General
-
Target
0a1e1d868dfefc1a6f52fb843d0c5a60_NeikiAnalytics.exe
-
Size
168KB
-
MD5
0a1e1d868dfefc1a6f52fb843d0c5a60
-
SHA1
1a69f5b9c0168a62758474c6b5c46933181af42a
-
SHA256
8416cfd085b7ef5a5a3708e7aba52b6f4acd5d0f432c62338c80bd07f78c18c8
-
SHA512
871d22f5899ce6c8e62c3b8539c9de2bfdb5aae1680c3baf6405df1b6d7475115e97b390a76caa0b82e459638518912958d5814539c4fefff8ef1c70ff430b30
-
SSDEEP
1536:He9KqhVZCGWDv7zPB/8Wc9agcwV3tTGqVE1WbuXMOJsy4C9u184wYkM8e8hj:HwijR8WcTBkqVE8pOJn4C9u158e8hj
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
grom
C2
83.97.73.127:19045
Attributes
-
auth_value
2193aac8692a5e1ec66d9db9fa25ee00
Signatures
-
RedLine payload 1 IoCs
-
Redline family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
0a1e1d868dfefc1a6f52fb843d0c5a60_NeikiAnalytics.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections