Overview

overview

10

Static

static

10

sonbot2exe.exe

windows7-x64

10

sonbot2exe.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    sonbot2exe.exe

  • Size

    98KB

  • MD5

    8d480bf63ae616511404555b2df519d2

  • SHA1

    780a8dd1d8b060638430fad3ada50ce32d9a0c62

  • SHA256

    4b2d1cff060b50886dea4a4958a99753b8f8fb6e66479ed74040a66f06860430

  • SHA512

    763c791b33507a7d3fadd60e8833a54f87945e9c91221a0c8317472c1d651d4d0cab95a9d5e169e58b4344dfa13b862cdb15f50059286ee284e8048efd7358ee

  • SSDEEP

    1536:/G6ijoigl6gx4uFjYp8Yq6tMmAT/Yt9uj6GOYEgCDkmbfquv0uZqyKjd7d4ewJED:Vlx4uFjYpErCAmGOYEg0ZH0uAy8dRrn

Score
10/10
cheatredlinesectoprat

Malware Config

Extracted

Family

redline

Botnet

cheat

C2

108.165.242.115:12664

Signatures

  • RedLine payload 1 IoCs
  • Redline family
    redline
  • SectopRAT payload 1 IoCs
  • Sectoprat family
    sectoprat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • sonbot2exe.exe
    .exe windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections