Overview

overview

10

Static

static

10

111fff9fbf...cs.exe

windows7-x64

1

111fff9fbf...cs.exe

windows10-2004-x64

5

Sharing

Copy URL Twitter E-mail

General

  • Target

    111fff9fbfee168e67c144814c1c7190_NeikiAnalytics.exe

  • Size

    91KB

  • MD5

    111fff9fbfee168e67c144814c1c7190

  • SHA1

    612f7c72f58938d4919fb31d23b12ad9f3f777b7

  • SHA256

    ead2696dfe7bfab2b66e6f9e481202e6d9b0630f06e29133c1348fb53e67c479

  • SHA512

    f9ada9adf8a48974804f311f7bce061db6262b4b77da664085a22b2d4d103ab02e7cc77f484e2561d7ff1459cdc289b4b39679395d73c9003b49899b3672f2e6

  • SSDEEP

    1536:PuU4TpvSpjsLZQEU4WcILxdtylKdNHtO8LnbrUMKGMc/A/IzKVqk/6xI/oswZx01:juapjsLyEU4WcILg8LbZnMc/QIzKVqk7

Score
10/10
1276259125_99redline

Malware Config

Extracted

Family

redline

Botnet

1276259125_99

C2

cocomarket.win:3306

cocomarket.win:28786
Attributes
  • auth_value

    02be53c526bf739e87f7da178393f0d9

Signatures

  • RedLine payload 1 IoCs
  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 111fff9fbfee168e67c144814c1c7190_NeikiAnalytics.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections