Overview

overview

10

Static

static

10

0x00060000...17.exe

windows7-x64

10

0x00060000...17.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    0x000600000001424f-117.dat

  • Size

    145KB

  • MD5

    1b3a5f8cb932f123e5a4a1d35d217592

  • SHA1

    73a25077f72e259b134bdf8e23f4ced2cf0ae2da

  • SHA256

    0bcd9b4f1b470238a44f380ad28c630f46d4a326097aea305df6b5ffa3117e25

  • SHA512

    f1dcce45cd4ce125f0810f058ffdc0cd011a64b241d9675ee1bf90e2a26bb7bc2ebb2b9d982f41546131946609e7fd8a043209ee23d971e250333b320eb638ac

  • SSDEEP

    1536:o2BGlTP+mZP61sEYDmRSNIgcscLDuRwH77+u8oxQKHbuxGBNM740wuei/Qv+R+Fn:6V+m5cvQmRSN90+82iTi74h9ZF8e8hU

Score
10/10
mixaredline

Malware Config

Extracted

Family

redline

Botnet

mixa

C2

185.161.248.37:4138

Attributes
  • auth_value

    9d14534b25ac495ab25b59800acf3bb2

Signatures

  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 0x000600000001424f-117.dat
    .exe windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections