Overview

overview

10

Static

static

10

0x00260000...69.exe

windows7-x64

10

0x00260000...69.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    0x00260000000130dc-169.dat

  • Size

    172KB

  • MD5

    32c25586447263af37df4dfd93f58bac

  • SHA1

    1a3d17ffe3519ab02342f7f7b09048644a294922

  • SHA256

    f38ba9c0ae289561f1b272bf357081730ced7f2260cd05cbe1b732a26f08aa7d

  • SHA512

    6e67f15a5a84405f1c85b15e034f034c6d7faf40afe1f871de05260d55dbc1ee056bfc658945ab7e5c4b83384708868f61052c00caf3dbdd94f58c9a0a266946

  • SSDEEP

    1536:h5XZucNjBql36sv0W7T6Z9bHOrHbRxLvE9mBmjM1xNH1YQLzbusqxoqjOF0GkRqt:7XJWbuzo7L84mM1xN+iQOqjOFp8e8hK

Score
10/10
dareredline

Malware Config

Extracted

Family

redline

Botnet

dare

C2

83.97.73.129:19068

Attributes
  • auth_value

    cdee8b76b5a70827d5d5e110218c7d2f

Signatures

  • RedLine payload 1 IoCs
  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 0x00260000000130dc-169.dat
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections