General
-
Target
14bad67ec2245532fb26c134659092a5e7adf11ee36b7db070b5540d74ecf619_JC.exe
-
Size
174KB
-
MD5
0c454fe19ab58bcbe05e0eaf0f9e5fbf
-
SHA1
803982af280ca1691caaeaf85f67f1855fe44561
-
SHA256
14bad67ec2245532fb26c134659092a5e7adf11ee36b7db070b5540d74ecf619
-
SHA512
b29a3e22bfe4762ca231e9d5089c200e6561ead2e12758c5a5985e3f026d809b04c40233822411103bef5ce63ec6a28c586e84c87a7ce05d50b7827240a9a8c2
-
SSDEEP
3072:OHIoRDFDI0V7bCnOW0Sa01yTzEPN2wCDEE0aWcjqRLF0lJZ8e8hk:IIsDI0V7bCbsEE0LdRLF0lv
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
DZ18001
C2
149.248.44.40:26069
Attributes
-
auth_value
28b749e7d03a441396e78bc1d2a217f8
Signatures
-
Redline family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
14bad67ec2245532fb26c134659092a5e7adf11ee36b7db070b5540d74ecf619_JC.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections