Overview

overview

10

Static

static

10

0x00060000...42.exe

windows7-x64

10

0x00060000...42.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    0x000600000001a43f-942.dat

  • Size

    222KB

  • MD5

    049ae0ce153eb5d6319ae68484daa191

  • SHA1

    7651770111521e43181c748da3cddf96046ec12f

  • SHA256

    0ae87eb661e0191c2fe16b40dac6ee5f3a8deaecafdddca0e5bd62362d4b9db6

  • SHA512

    6307a7448c416cd7c5d4e9420becde2166a297c26d6a5a535f663cf5843d59b572680888fbe2a9d262dbbc130d1f0c584cf4927dd59820130bbeccb4df914101

  • SSDEEP

    3072:TtJXRMeZYncNgckxQdxCr1d2t/q5yoQVZL53pRzzXZQAZ:TJMeucNgckedxCDo/doQVZdZRzzXZQ

Score
10/10
kukishredline

Malware Config

Extracted

Family

redline

Botnet

kukish

C2

77.91.124.55:19071

Signatures

  • RedLine payload 1 IoCs
  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 0x000600000001a43f-942.dat
    .exe windows:4 windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections