General
-
Target
Implosions.exe
-
Size
95KB
-
MD5
91d5b9204bd2b4985ed9584fa2ae099d
-
SHA1
6e082c72278a84739315782984d1d2526e2f2f21
-
SHA256
cb05f61ce4669963e3a556c8f7f4770ee82c5182bd265899abc2a0caaf2c4f10
-
SHA512
3d556e0599788af324a4f3b00320005db759bc63d1e25fb1cc2865d8049cf43b76b982775dc5d44498925d47951f5c616808db00e66cdb0448c3662823b8c4ff
-
SSDEEP
1536:FqskhaqpalbG6jejoigIP43Ywzi0Zb78ivombfexv0ujXyyed2Z3tmulgS6pQl:DqaKaYP+zi0ZbYe1g0ujyzdFQ
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
skullytest
C2
5.180.155.87:4035
Signatures
-
RedLine payload 1 IoCs
-
Redline family
-
SectopRAT payload 1 IoCs
-
Sectoprat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
Implosions.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections