Overview

overview

10

Static

static

10

0x00070000...39.exe

windows7-x64

10

0x00070000...39.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    0x0007000000022d8e-39.dat

  • Size

    221KB

  • MD5

    a339b7ec54932a9df3355c6ea9002f7e

  • SHA1

    434d8ab99af1b3b5e4afba078eb393fdfb1e0e43

  • SHA256

    0c94f4feb6c43c445844298b0bca21a231006bb17d26cae85655a1333c6269a5

  • SHA512

    3c1eabd9e1275d46835743d3928cbb6d7b2e6d5289e7e58e767cd2e008184f36dfc42ef53585573a622eb4fc7a1baa48bc676958c4f484c9d0290ee54a38c633

  • SSDEEP

    6144:EmSQQNgcPf2iHv0+9JR/xadbzBNFygk5:DHQNgcPf1JROBNFygk5

Score
10/10
kinzaredline

Malware Config

Extracted

Family

redline

Botnet

kinza

C2

77.91.124.86:19084

Signatures

  • RedLine payload 1 IoCs
  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 0x0007000000022d8e-39.dat
    .exe windows:4 windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections