General

  • Target

    build.exe

  • Size

    95KB

  • MD5

    4202f34f7854f22d44f9bbed41b0f443

  • SHA1

    c82ebbd4d747dcfd384b8383008b061b71ab332e

  • SHA256

    d95e98146e5b40222122868c32347cfdccc4958b582dc00b38f40ba9c97b425c

  • SHA512

    c8b74660e9db52b4e0b8247aa473fab989e6365dbc23994f55cbba751c1bb75a9b9be63cd52cba2ab8656b7e6a9783bc45dbd10913505c2803611ec3e3ab23d7

  • SSDEEP

    1536:Vqsm5qeUlbG6jejoigI843Ywzi0Zb78ivombfexv0ujXyyed2G3tmulgS6pA:TKlMY8+zi0ZbYe1g0ujyzdcA

Score
10/10

Malware Config

Extracted

Family

redline

Botnet

cheat

C2

finance-lot.gl.at.ply.gg:36936

Signatures

  • RedLine payload 1 IoCs
  • Redline family
  • SectopRAT payload 1 IoCs
  • Sectoprat family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • build.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections