General

  • Target

    0x000800000001af3a-151.dat

  • Size

    168KB

  • MD5

    b5c246c78c9c6fd044de60b38b709dca

  • SHA1

    cd3bc442247a1426913f80fa570576ddd391bcfd

  • SHA256

    1a0625284d2526b9bc9708cb0cfcf7b7e74bfb7c2660bcfddaadc5c82406afbc

  • SHA512

    3285c07109cdbe2ec39b214f55f812ae84ac33ee78cb56f806de35ef84db284389e3bcd31952841d749df25335471c006c25147fc0297436f61aed888102ec8c

  • SSDEEP

    3072:4UUfOJD8WDEpxKvmE1xqVOM0Xa3ODL0Ht8e8hp:lkOLEpWLd/QODL0Ht

Score
10/10

Malware Config

Extracted

Family

redline

Botnet

maxi

C2

83.97.73.126:19046

Attributes
  • auth_value

    6a3f22e5f4209b056a3fd330dc71956a

Signatures

  • Redline family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 0x000800000001af3a-151.dat
    .exe windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections