Overview

overview

10

Static

static

10

NEAS.0x000...JC.exe

windows7-x64

10

NEAS.0x000...JC.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    NEAS.0x0006000000018b00191dat_JC.exe

  • Size

    221KB

  • MD5

    d28bfd3a6e427d3b68842a4d04b428d3

  • SHA1

    55ac32ce46da90536ba597d87f2f2171a4d8e810

  • SHA256

    db9fc7775adb7f12a380922734d88041052e6f9b3ad3427743fdf964b981b198

  • SHA512

    730a749b7cc8eff37e4277f2627f5f97e8704eaa504eb4e3a2969735c7144ee57ea5e8b1c129c0974b359d48624944c6adad938d3f0b8366cf168d83d6755e60

  • SSDEEP

    3072:yFyOHrnNNgchKkRm8pyUDv8ZTYllt/q0ePfm/lpvSLaeG:yFyOLNNgch5k80UDGYp/mPfmdJSLa

Score
10/10
lutyrredline

Malware Config

Extracted

Family

redline

Botnet

lutyr

C2

77.91.124.55:19071

Signatures

  • RedLine payload 1 IoCs
  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • NEAS.0x0006000000018b00191dat_JC.exe
    .exe windows:4 windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections