Overview

overview

10

Static

static

10

0x00060000...04.exe

windows7-x64

10

0x00060000...04.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    0x00060000000154a7-204.dat

  • Size

    221KB

  • MD5

    81e4caa50345ed953858327d6f985298

  • SHA1

    5b8fd5621e5ae41e2a69fcb2ea2eeddd7d844799

  • SHA256

    e384405b5b6a0d67aa44a06c02f4c2f4cdd7ab35b5fe0e1bfd2cd44f88b34399

  • SHA512

    145bd166060a1ba13bdfaadebe74b3895d863659763e4c240ddf61d1d41b52a5178ea647226511f73655ea5396f1b1457590bf1bb0f16a91553063e4ecfb9757

  • SSDEEP

    3072:+Nv0S/yQKnhNgcoVQqw5TmJOXkXt/qYJanR1TaiV0VnCkMSH:+i4y5hNgcoVQJ5n0d/tanR1aQ0VnCkM

Score
10/10
kolyanredline

Malware Config

Extracted

Family

redline

Botnet

kolyan

C2

77.91.124.82:19071

Signatures

  • RedLine payload 1 IoCs
  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 0x00060000000154a7-204.dat
    .exe windows:4 windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections