Overview

overview

10

Static

static

10

0x00060000...00.exe

windows7-x64

10

0x00060000...00.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    0x00060000000142d2-2300.dat

  • Size

    168KB

  • MD5

    9eb608b7b14f527df2d7cab8a543ad09

  • SHA1

    e8cc65dc6d070bd1d7f7c873dce002c4fba6abeb

  • SHA256

    20baa00e2153312c1a8934f2207f20118f4121c70d93c29dd11606e901a1c184

  • SHA512

    bdfc6fea13d0ee406f53c1a681b2f904aaf25ca64dc89321a078aef76a3252f16bf1f16222ffe36beb93c022df91876d29cc9785dbd6576f0a340099c6ef1482

  • SSDEEP

    1536:yiwRHYqlVZRGW6zgHr4Y4JxMGztAxzbTGqV+buUngUtWfD5383wYkF8e8hP:WJIHlbWMqVKIdD53X8e8hP

Score
10/10
dizaredline

Malware Config

Extracted

Family

redline

Botnet

diza

C2

185.161.248.150:4128

Attributes
  • auth_value

    0d09b419c8bc967f91c68be4a17e92ee

Signatures

  • RedLine payload 1 IoCs
  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 0x00060000000142d2-2300.dat
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections