General

  • Target

    0x00070000000186a1-111.dat

  • Size

    174KB

  • MD5

    919c85107e1f87d93eb8cf8dc78e20ef

  • SHA1

    09c960c4bf00a94d875ec53e2538daff557d23f3

  • SHA256

    faf16a46d685b00285e9950451664c1231e3d4ee0c215552fcbf933e0dc1d5a0

  • SHA512

    3c8d448c9108b07a69fab88111e4b02ce37d18305a9d32ca07579aa7301994452c0df3fa3d4e40ead5c0dee4de383f57f835c73d6384a57ba1cff11c73835931

  • SSDEEP

    3072:2N4iIwQkI086khQO4QGaBGUE0OlO6BAYHJ88e8h+:S47kI086khCUE0KAYHK

Score
10/10

Malware Config

Extracted

Family

redline

Botnet

maga

C2

77.91.124.54:19071

Attributes
  • auth_value

    9dd7a0be219be9b6228dc9b4e112b812

Signatures

  • Redline family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 0x00070000000186a1-111.dat
    .exe windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections