General
-
Target
0x0008000000012324-83.dat
-
Size
172KB
-
MD5
97db732edb65cf686fa821f2dd89484f
-
SHA1
e3fde7f1def3783f7d11eeddb00f39a1ede10c21
-
SHA256
177f9f11044eba6adb8ce41b65912e08a465d6b3c2c6b100276487ad0d9a5eab
-
SHA512
fccdc80b715e9742e7288e75c555be3867982e8975aca37c10310f67614660572f01fe965c8295e39efaefd646987e937e1749ac9df02254199ccc75b8fd4d03
-
SSDEEP
1536:tpYzm3j1p36sv0W7ThkmgnrHzOgxmWU4vMYIdRxNhlYQLvbus+hzpE0GkRw8e8hg:czm35HmROemEkLdRxNkO2NpET8e8hg
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
loxa
C2
83.97.73.129:19068
Attributes
-
auth_value
c709e1d3fce1e71b1abb95c0a30242b8
Signatures
-
Redline family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
0x0008000000012324-83.dat
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections