Overview

overview

10

Static

static

10

NEAS.NEAS4...JC.exe

windows7-x64

10

NEAS.NEAS4...JC.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    NEAS.NEAS4056882ce059eac4b8351bbc9fd021d7bb44a55088c1f86e4549c0a0f25c8398exeexe_JC.exe

  • Size

    221KB

  • MD5

    c05abc7d1cf736bf98e26f7ae61e4037

  • SHA1

    cd78fb82e7309d8e448233e109859487222e72d9

  • SHA256

    4056882ce059eac4b8351bbc9fd021d7bb44a55088c1f86e4549c0a0f25c8398

  • SHA512

    3c1ac843c53a7611759864872a5caaef1a8b695ace225a7d476f951abd26180df8314882c9481283ecfae12150fc588dc3392e9012e59f9a3308328710a618b7

  • SSDEEP

    3072:wlpLgGnHNgc/RbHxS3Y+CegAt/q5PlkFPlNDuA/kVU:wLRHNgc/VHxKgm/utkFPLSA/k

Score
10/10
rocket_negrredline

Malware Config

Extracted

Family

redline

Botnet

rocket_negr

C2

128.140.44.160:47542

Signatures

  • RedLine payload 1 IoCs
  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • NEAS.NEAS4056882ce059eac4b8351bbc9fd021d7bb44a55088c1f86e4549c0a0f25c8398exeexe_JC.exe
    .exe windows:4 windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections