Overview

overview

10

Static

static

10

b63c396d6a...7b.exe

windows7-x64

10

b63c396d6a...7b.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    890f256f566dd38ac16fa2d7c8afb46c.bin

  • Size

    85KB

  • MD5

    fc6ecf416814c6bae66c447cfeff9507

  • SHA1

    fb216ce5e578cb35f6cedbf69698a5f727eea2ba

  • SHA256

    5daf62c1c2363864efd2dff8fffeaf7ff4bd7a2badbe03009cc689e381f26527

  • SHA512

    21e503a21518b83f42414088cf886e72d92cd5aa6af7d9e6b7b931159e7bba0dd8c0bc617c3a9f8e7a100fc1b2d4a6200986c0283a6e5cba3b4d9d6fb0b42bde

  • SSDEEP

    1536:aSDwJOHr8wJnCY/n0LpI5LDN512TlOF6qbu1wo8rKheL+pJixVHtSY7kv0lgEl:twJ08wJf/T2YF6qbuCKix5J7ksl

Score
10/10
kinzaredline

Malware Config

Extracted

Family

redline

Botnet

kinza

C2

77.91.124.86:19084

Signatures

  • RedLine payload 1 IoCs
  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 890f256f566dd38ac16fa2d7c8afb46c.bin
    .zip

    Password: infected

  • b63c396d6a14d96ec8c4547919f763746aea0f05d119cb4c63b50735a6fa287b.exe
    .exe windows:4 windows x86

    Password: infected

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections