General

  • Target

    e377209d02ed9cdf0f9b934698e7ac2f.bin

  • Size

    300KB

  • MD5

    e377209d02ed9cdf0f9b934698e7ac2f

  • SHA1

    fd343ff2e65533a05bb065bed1fd7e164b4bb975

  • SHA256

    0daadce7bdb4ca5870648c7fe4d5d1bf8d083b4437978fbcb3121e0ba450a7c1

  • SHA512

    37c4cb82543cb41865f4c957c8d4b1d01945ab08c6339229a4c7f351a53e63c5387fdba3895a06f54dd3d96a917163141db22116fb70e815c7e15d8d08143197

  • SSDEEP

    3072:N2QLBLYSQOQ/pLkbmNN0DEOacCK9sEdYYXQnX3x8R0AgkVMRqT6Dv/YSeqiOL2bN:UMbmTcCWYYwx8WAXVMRqT6D4AL

Score
10/10

Malware Config

Extracted

Family

redline

Botnet

nooname

C2

148.163.89.57:44136

Signatures

  • RedLine payload 1 IoCs
  • Redline family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • e377209d02ed9cdf0f9b934698e7ac2f.bin
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections