Overview

overview

10

Static

static

10

1ca8f444f9...e9.exe

windows7-x64

10

1ca8f444f9...e9.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2c470494b6dc68b2346e42542d80a0fd.bin

  • Size

    113KB

  • MD5

    88c429a6ee13874e122500e427bb790a

  • SHA1

    71a7dcdfd8b8132f7e3c6f760003871c4ee4da6d

  • SHA256

    aa7adbda2c4f34dc0f70c0d11221b85bbf0d1f9044f6ee0cc7334cce231196a4

  • SHA512

    d1d608a5cdb16849d37a7d18747cbcb9d38b5d169b496dcd1957fb6508a24f7535a6934e1b273887555126d81169d4f4105a75e035b2168546a56c7d99a6b0fe

  • SSDEEP

    3072:PrVjQaCIc+lcYGl1Vje7//eO8eoE+9/97tKDCKAZbxZqyNwi:JjuINlB+8njtt+9vwj+xZki

Score
10/10
2024redline

Malware Config

Extracted

Family

redline

Botnet

2024

C2

195.20.16.103:20440

Signatures

  • RedLine payload 1 IoCs
  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2c470494b6dc68b2346e42542d80a0fd.bin
    .zip

    Password: infected

  • 1ca8f444f95c2cd9817ce6ab789513e55629c0e0ac0d2b7b552d402517e7cfe9.exe
    .exe windows:4 windows x86 arch:x86

    Password: infected

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections