General
-
Target
tungbotexe.exe
-
Size
100KB
-
MD5
d6421cc1dd62ad1d2cbb47d111491704
-
SHA1
90e5ea575728049d29ba8d0e83adb3595846b047
-
SHA256
3d5d91613033f94c7b22b38b15351089265d158fd2fb6dabc9d671592c2aabb8
-
SHA512
48a32462245e4f42d3dda11f0462a8afedd7b97195f21dd78f22d8a1c986b66f3194b6e113982ae1adf4c97f304a9c4335a7212d96d76658df881755625d6844
-
SSDEEP
1536:SyoSAkUG6jejoigIcWqEVamw/GSPqL4IWOO/AIdbfHSCv0uuXyyedOxtCgfLpoNZ:SuAxYc849uNvByvr0ueyzddZ
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
cheat
C2
103.173.227.25:12664
Signatures
-
RedLine payload 1 IoCs
-
Redline family
-
SectopRAT payload 1 IoCs
-
Sectoprat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
tungbotexe.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections