General

  • Target

    loader.dll.exe

  • Size

    145KB

  • MD5

    7e944f5789a8a226490d2ae03b65148d

  • SHA1

    2e233ca174ef5549b91974cd9b2a5d42c7ec98d9

  • SHA256

    fa6f65c685c3ae56982dafb088bd00c64395456ea10b80e1d0b887be453df6ec

  • SHA512

    b99536151fbf353d09f0eac22ab25af5aad1b3ff8eae0f6bb3c281d17497645c8dd6b0d22c5132a5e39986fd274c122a796279cd0667404e2d99c359ac9ae29e

  • SSDEEP

    3072:WV+m5c/QmRSNKDN2W9cVXKHhtZx8e8h2:Wj2+WzHhtb

Score
10/10

Malware Config

Extracted

Family

redline

Botnet

dako

C2

77.91.68.253:41783

Attributes
  • auth_value

    c6bc6a7edb74e0eff37800710e07bee1

Signatures

  • Redline family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • loader.dll.exe
    .exe windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections