General

  • Target

    0x0007000000015653-44.dat

  • Size

    95KB

  • MD5

    16280875fdcf55ab4c8f1dff6dabc72e

  • SHA1

    39880e6fbb258f4f4fa5c79337ec893acae55fb7

  • SHA256

    91455ac8837ff1fdba7067cd3e7f790c1649ae70164ccbdf0483eae831a7253a

  • SHA512

    53ba4e5e88a8f19ba3faa2f1244501c2d62827a9178ec0fdc995582e03e7d8e39f2dfd7bde11285781a65a021d4f4aab48b94be66a8a1cebbd47ab0cb819202e

  • SSDEEP

    1536:RqseFqJklbG6jejoigIg43Ywzi0Zb78ivombfexv0ujXyyed2ltmulgS6pE:/eScYg+zi0ZbYe1g0ujyzd1E

Score
10/10

Malware Config

Extracted

Family

redline

Botnet

Vic

C2

beshomandotestbesnd.run.place:1111

Signatures

  • RedLine payload 1 IoCs
  • Redline family
  • SectopRAT payload 1 IoCs
  • Sectoprat family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 0x0007000000015653-44.dat
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections