Overview

overview

10

Static

static

10

build.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    build.exe

  • Size

    95KB

  • MD5

    0628c0105fc4b0b7411a41d2bf3413cb

  • SHA1

    16a87eff67e49872dd9b7399ded40babf5506f77

  • SHA256

    4c8c2abfd0489840ca585950a4f1cbc67f53ec6de0eafb8f5797c79fadfd128d

  • SHA512

    0a9a784c8d7087bc725740601acebeb3c989aa73bc876516c86ac1cc50b8b43c4c11d3f03bd499578eb0fb336a02e9748d943f3cbb1b40ced3354902219e91b7

  • SSDEEP

    1536:VqsQ5qeUlbG6jejoigI843Ywzi0Zb78ivombfexv0ujXyyed2atmulgS6pA:TglMY8+zi0ZbYe1g0ujyzdGA

Score
10/10
@123redlinesectoprat

Malware Config

Extracted

Family

redline

Botnet

@123

C2

vehicle-vary.gl.at.ply.gg:23828

Signatures

  • RedLine payload 1 IoCs
  • Redline family
    redline
  • SectopRAT payload 1 IoCs
  • Sectoprat family
    sectoprat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • build.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections