Overview

overview

10

Static

static

10

0x00060000...04.exe

windows7-x64

10

0x00060000...04.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    0x00060000000167ef-104.dat

  • Size

    219KB

  • MD5

    9d199e3c27a0e99ddb0d64a6df0ca30a

  • SHA1

    9d2decbbfdbcd7b0fc49ce3b9a49a9cb4ec1436f

  • SHA256

    af60f809218ab9848cf29f0ada7f3c42074a8fff84a387fbefa40f8877c23993

  • SHA512

    7b7309f31e288416bde1735ce500c3c121328c7308e878967993383ef2e961d5c31ac3e686e6cce3d21caade3f4c98dcecd905398cb206a4910ae1bd94cb593a

  • SSDEEP

    6144:neT7M7zNgcEgkrbVNurQ+9/Ac0NV1SE561FJ:QCNgcEjryV4cA561FJ

Score
10/10
kedruredline

Malware Config

Extracted

Family

redline

Botnet

kedru

C2

77.91.124.86:19084

Signatures

  • RedLine payload 1 IoCs
  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 0x00060000000167ef-104.dat
    .exe windows:4 windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections