Overview

overview

10

Static

static

10

0x00040000...28.exe

windows7-x64

10

0x00040000...28.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    0x0004000000018685-128.dat

  • Size

    222KB

  • MD5

    100ea6da904de350e82e94180cabe16f

  • SHA1

    abc55a8fe433e22c3bcaea0c74b2cfbf394a6356

  • SHA256

    65910edeaff945a2615d05e1038e484f8abc6da73f43e1fc60829b8b5fa116c0

  • SHA512

    ec2bd392ca62b1636a37af699c3609c5e78490612623def98d6fbbaeca6968fbae0b58fd062397f796898f8505396840f930a914bfb8e6a9b1b7b8106b1f9fb7

  • SSDEEP

    3072:TtJXRMeZYncNgckxQdxCr1d2t/q5yoQVZL53pRzzXZQAZ:TJMeucNgckedxCDo/doQVZdZRzzXZQ

Score
10/10
kukishredline

Malware Config

Extracted

Family

redline

Botnet

kukish

C2

77.91.124.55:19071

Signatures

  • RedLine payload 1 IoCs
  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 0x0004000000018685-128.dat
    .exe windows:4 windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections