Overview

overview

10

Static

static

10

winprofile

windows7-x64

10

winprofile

windows10-1703-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    3c2b9fe3c1738e99588a5abf9373ce717aceaa02ef1895d55e998770af8d3e98

  • Size

    297KB

  • MD5

    597fc72a02489d489b93530de2c30bb1

  • SHA1

    6bfe1f53affe68aa157c314cb77e055ffd982e92

  • SHA256

    3c2b9fe3c1738e99588a5abf9373ce717aceaa02ef1895d55e998770af8d3e98

  • SHA512

    92a209617d8479201869faa2d19dca8253b6d7b3db23fb253c192d8ea05203e97e3449fe452896120a6790c04ee37c3d024a8d6a1ae979f848ff533b293a45b0

  • SSDEEP

    3072:6qFFrqwIOGMNyHESF9D4SGqFqsUviy72Gtnl8yJTZnUHI4cZqf7D34leqiOLCbBa:5BIOGv7G/s4ltJTZU5cZqf7DIvL

Score
10/10
@oni912redline

Malware Config

Extracted

Family

redline

Botnet

@oni912

C2

45.15.156.209:40481

Signatures

  • RedLine payload 1 IoCs
  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 3c2b9fe3c1738e99588a5abf9373ce717aceaa02ef1895d55e998770af8d3e98
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections