General
-
Target
12fa98f47e67ef55558d715709fbf108
-
Size
106KB
-
MD5
12fa98f47e67ef55558d715709fbf108
-
SHA1
2f629e53c7e3d141e17917eb597c5c55497413a4
-
SHA256
45f41afbecb1524f1d3301df4f33577c1131c0eaa4d1d714abf904c33bb35407
-
SHA512
a2d5389c6807a224eb7996dccf9e025f9361379c28914ecd0581dbe5fc14cf6526a52cb4f8b42c5764c37113ed80f318297860785a1635e02c3b14c0717ba707
-
SSDEEP
1536:8xPQlrIAfg4IDrAeR8C3gf00JUnjbuFGdfnkuyqddyV7WOEtG6eRaoigO:+kIA446ye5xfnry4dywJWe
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
VC2208
C2
185.92.73.140:80
Signatures
-
RedLine payload 1 IoCs
-
Redline family
-
SectopRAT payload 1 IoCs
-
Sectoprat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
12fa98f47e67ef55558d715709fbf108
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections