Overview

overview

10

Static

static

10

cryptolaemus

windows10-2004-x64

10

cryptolaemus

windows11-21h2-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ece58cdda5d85a7fe7d7262313b8041e3c988d814b7dd60f0468dbb7109596ba

  • Size

    95KB

  • MD5

    60e00124f9d54b2d423f02dc81b57127

  • SHA1

    a250651ba1f3eb72bcf0f24a31ff2a66b0a39959

  • SHA256

    ece58cdda5d85a7fe7d7262313b8041e3c988d814b7dd60f0468dbb7109596ba

  • SHA512

    4a5b7529c9fd3325632a13fde5b01cd4bd21258fca2c358d3322127f9c74b86c69250a673d9fe9878a2c828870026661df62a3b95d5235b378bf83ff29a82add

  • SSDEEP

    1536:9qs+XqrzWBlbG6jejoigI343Ywzi0Zb78ivombfexv0ujXyyed243tmulgS6pY:r0gzWHY3+zi0ZbYe1g0ujyzdaY

Score
10/10
cheatredlinesectoprat

Malware Config

Extracted

Family

redline

Botnet

cheat

C2

91.92.252.220:1337

Signatures

  • RedLine payload 1 IoCs
  • Redline family
    redline
  • SectopRAT payload 1 IoCs
  • Sectoprat family
    sectoprat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • ece58cdda5d85a7fe7d7262313b8041e3c988d814b7dd60f0468dbb7109596ba
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections