General

  • Target

    0x0009000000012302-78.dat

  • Size

    145KB

  • MD5

    fe2d269d2d2dc99dbaaa03a12b9697d1

  • SHA1

    2772b106d4694301cbd9c9b69f86c2f1867c8aa9

  • SHA256

    5d928481d560c92fd75ab0c2753a3658919eb148a1e53b1ea2b14246c6ed3eb1

  • SHA512

    362fe0f737b5ce4840eda67545a3b7006baa5589edbc5adefe1fcd98fb12eedaa44e1d86fda764d88724d5291cd0589f7f7ac380dd6809f204ad7f06eee670a3

  • SSDEEP

    3072:vV+m5cVQmRSx9WCEkEhPW67V8BjVhtZN8e8ht:vj4oihwlVht3

Score
10/10

Malware Config

Extracted

Family

redline

Botnet

diza

C2

185.161.248.37:4138

Attributes
  • auth_value

    0d09b419c8bc967f91c68be4a17e92ee

Signatures

  • Redline family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 0x0009000000012302-78.dat
    .exe windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections