General
-
Target
0x00070000000132f0-116.dat
-
Size
145KB
-
MD5
324952966488a58d2b231ff62f13b2e6
-
SHA1
bf201fe8be42c6a670a23478ca8d7c98de8f02c2
-
SHA256
ee0c1b8a3883eeca7959d502be5fa8b5b1cbcde4341167f4fb9e5289cbacd1dd
-
SHA512
5a575092195d45768319e7f173d07387b0e61b39019d6240639f2b732a885499b23e9b9d763cef0a8b650c2eb8ca4ab9cd082e998e76a3dce70c04e86bed814c
-
SSDEEP
3072:YV+m5crQmRSR38AQtQJ8uptt0phbZV8e8h1:YjCZE+phbf
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
luper
C2
77.91.68.253:19065
Attributes
-
auth_value
474f8e2f629b7bc1a8c7ea1dc39ca043
Signatures
-
RedLine payload 1 IoCs
-
Redline family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
0x00070000000132f0-116.dat
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections