General
-
Target
0x00070000000126c9-109.dat
-
Size
172KB
-
MD5
153acd481f3e5b362ea2cd3a944576ca
-
SHA1
19fedcf9c554fe35806327c7b6b7690a6613d028
-
SHA256
0e39f9f4aaecd470fda613b18af295e3b3bb2cc204d83e1df458398a51bee056
-
SHA512
6d9005f4f25dd9a6d34cc2e0aae1418bf9536f10114df444f6b0daffe60ceffabe2bf2f6b439a336c98422ea632feb02ccd1d7d9d6b3e59d4b58329ced9d2b29
-
SSDEEP
3072:6KZ7wn+hHMZkVFUxNFAPjV/39JgU8e8hd:6H+CAi+/39JgU
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
muza
C2
83.97.73.129:19071
Attributes
-
auth_value
99f39e1ac98e0c0a729ab27594e72bc3
Signatures
-
RedLine payload 1 IoCs
-
Redline family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
0x00070000000126c9-109.dat
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections