Overview

overview

10

Static

static

10

tmp.exe

windows7-x64

10

tmp.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    tmp

  • Size

    304KB

  • MD5

    8510bcf5bc264c70180abe78298e4d5b

  • SHA1

    2c3a2a85d129b0d750ed146d1d4e4d6274623e28

  • SHA256

    096220045877e456edfea1adcd5bf1efd332665ef073c6d1e9474c84ca5433f6

  • SHA512

    5ff0a47f9e14e22fc76d41910b2986605376605913173d8ad83d29d85eb79b679459e2723a6ad17bc3c3b8c9b359e2be7348ee1c21fa2e8ceb7cc9220515258d

  • SSDEEP

    3072:uq6EgY6i4rUjhYMLwPcologL/ejZWTACtAti0lcZqf7D34leqiOLibBOp:VqY6inwPDpKZWTA+AplcZqf7DIvL

Score
10/10
test1234redline

Malware Config

Extracted

Family

redline

Botnet

Test1234

C2

185.215.113.67:26260

Signatures

  • RedLine payload 1 IoCs
  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • tmp
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections