redline | 665257d2e600180970af272d6ec682ec1a42959de375813a3f358efce8f2458c[.]exe

General

Target

665257d2e600180970af272d6ec682ec1a42959de375813a3f358efce8f2458c.exe
Size

298KB
MD5

b7ef46030488cc9077ee3aee05019001
SHA1

a9ef730de2589b8c7103c181ea3e794ae3c52698
SHA256

665257d2e600180970af272d6ec682ec1a42959de375813a3f358efce8f2458c
SHA512

f554ec4b1524869bfa0efdedb810aba7dea37feb1d7f6487059fc630fdecf5ea153eb422dce5583908ab840335a0e0860e547b7c33113b4966fff8297dfcb317
SSDEEP

3072:NqFFrqwIOGtwygmQZweFapa4jdbJbYk0naVbhd4mTZbeHg/cZqf7D34teqiOLCbM:kBIOG2yAWUCdlTZSKcZqf7DIXL

Score

10^/10

Family

redline

Botnet

LogsDiller Cloud (TG: @logsdillabot)

C2

5.42.65.129:2353

RedLine payload 1 IoCs

resource	yara_rule
sample	family_redline

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
665257d2e600180970af272d6ec682ec1a42959de375813a3f358efce8f2458c.exe