Overview

overview

10

Static

static

10

0x00060000...82.exe

windows7-x64

10

0x00060000...82.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    0x0006000000016d23-182.dat

  • Size

    223KB

  • MD5

    82defce27f7b09ce6f29ceb91821ea25

  • SHA1

    0df4232d7e17880fbfa195719a7bfda6749386d9

  • SHA256

    d5c11e48fdc891b7b884872725616b8eb093b4bed239c60ad8ce84abf147a1f3

  • SHA512

    c28e890ea7a09b038f247ba647887ec0aafa14c588106ae572776a910388e96a1bb9e6045ec46813530d889e6e785394976fa0af0ba2c02b26daa2bda557edd3

  • SSDEEP

    3072:TtJXRMeZYncNgckxQdxCr1d2t/q5yoQVZL53pRzzXZQAZ:TJMeucNgckedxCDo/doQVZdZRzzXZQ

Score
10/10
kukishredline

Malware Config

Extracted

Family

redline

Botnet

kukish

C2

77.91.124.55:19071

Signatures

  • RedLine payload 1 IoCs
  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 0x0006000000016d23-182.dat
    .exe windows:4 windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections