Overview

overview

10

Static

static

10

6edc4cf5a6...b5.exe

windows7-x64

10

6edc4cf5a6...b5.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    5eea3c3e6eed0e15adffe67740046beb.bin

  • Size

    85KB

  • MD5

    2f26c978456decfb534e43aff4c16b65

  • SHA1

    edb92aa054b81caa69d375fe42e3d4d2626c52f8

  • SHA256

    f28e13da6a11c937c7a0468b6e15af01f5879e0292745052f2fd4489977d5d67

  • SHA512

    b1a38cd39f8d6925103666c00b0c122cfed3f91272b90f93f43ebc368291216e957839efc52a0fdf1cf85f7809e46a78af47e68bb72b83ccdef8e9ab4b51cf44

  • SSDEEP

    1536:vd3K/0bC1w3APSByFeMVwy0IJnLUZvsBrMHhwaiqWXYrQeGrpCS0U+dwxlEfI:JO0WQBuvLfBMHhEVeyCwHbII

Score
10/10
sq1redline

Malware Config

Extracted

Family

redline

Botnet

sq1

C2

194.169.175.220:30615

Signatures

  • RedLine payload 1 IoCs
  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 5eea3c3e6eed0e15adffe67740046beb.bin
    .zip

    Password: infected

  • 6edc4cf5a676d8592ad06a2fd42f1153b093e2a8d4e1bd13d8c0ad2ef88d51b5.exe
    .exe windows:4 windows x86 arch:x86

    Password: infected

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections