General
-
Target
aa6ee8650604eeec9a1d7ebd432f3c91
-
Size
96KB
-
MD5
aa6ee8650604eeec9a1d7ebd432f3c91
-
SHA1
5a7c2dabb51cb1fa93ba787e7dc6d802898179a0
-
SHA256
56de531fd6f7b841de6f4f4a8ec14c1e95cd0fca2598a87cff8dcffe9c1e1797
-
SHA512
5ae7dd6a886bb68fb4c27d00d16263e2070b5897ea780f69c7f2b5cf1ea50a807d144972cfa0cae83700d88d4512529bc4177b63ce2a9627f6c7a12b7cfee646
-
SSDEEP
1536:oHB+zRmEOxA2USXnWeiB3IGVGGUWZ4+dfDxZSmbf9Bo3PHTZyHddYo3GtxbIj8ER:owzRmEf2UUWeiB33UWZ4+5xZX1UPHVyl
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
@Лох
C2
18.117.82.8:58546
Signatures
-
RedLine payload 1 IoCs
-
Redline family
-
SectopRAT payload 1 IoCs
-
Sectoprat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
aa6ee8650604eeec9a1d7ebd432f3c91
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections