General
-
Target
0x0008000000012342-117.dat
-
Size
145KB
-
MD5
9d0f80fa4bf5a1262c3c0473c66cf4d7
-
SHA1
ed49d558237991fdae4c7f7433c196bdf6270d06
-
SHA256
c580f31d8f5d345c3d5d79cfb65285f6fc8b118070495d790c5850befcb61998
-
SHA512
04a9b68e010a4597cacb245d844c1b6f753987be85201e07c8b35c5056c088b6e640beb35ff2c0548487c6d818eec78c5156e9afea6e7a1732be5f298ba0f83e
-
SSDEEP
1536:o2BGlTP+mZP61sEYDmRSNIgcscLDuRwH77+u8oxQKHbuxGBNM740wuei/Qv+R+Fn:6V+m5cvQmRSN90+82iTi74h9ZF8e8hU
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
mixa
C2
185.161.248.37:4138
Attributes
-
auth_value
9d14534b25ac495ab25b59800acf3bb2
Signatures
-
Redline family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
0x0008000000012342-117.dat
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections