Overview

overview

10

Static

static

10

NEAS.fe610...JC.exe

windows7-x64

10

NEAS.fe610...JC.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    NEAS.fe61033cd7d9edc6947d77d780ad1300_JC.exe

  • Size

    223KB

  • MD5

    fe61033cd7d9edc6947d77d780ad1300

  • SHA1

    97ed9f9608bc742acb97392423a35cd5a15bc33e

  • SHA256

    9741cb920d0a9d94d599470ba02194e2343a714b9644c4517f403cc3756f4eec

  • SHA512

    149d737bf6713045181dafb3c67622889169bc18ef33249ea8b22fe504c995346c0aa91ce99a3acc545f401d4516e3e4d7e7e4f30c9fec392275456c834989ab

  • SSDEEP

    6144:EmSQQNgcPf2iHv0+9JR/xadbzBNFygk5:DHQNgcPf1JROBNFygk5

Score
10/10
kinzaredline

Malware Config

Extracted

Family

redline

Botnet

kinza

C2

77.91.124.86:19084

Signatures

  • RedLine payload 1 IoCs
  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • NEAS.fe61033cd7d9edc6947d77d780ad1300_JC.exe
    .exe windows:4 windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections