Overview

overview

10

Static

static

10

winprofile

windows7-x64

10

winprofile

windows10-1703-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    49e82525e09dec7a7cb5bf10425f6b95c3204490c07bc8d86b2879e0f7b95bfa

  • Size

    304KB

  • MD5

    856718c896f460406a0c3b591586ee8b

  • SHA1

    d2223509a92dd68af7baec570bbb89772cf0558f

  • SHA256

    49e82525e09dec7a7cb5bf10425f6b95c3204490c07bc8d86b2879e0f7b95bfa

  • SHA512

    9146db95a75e49a81bb2b9459e6d934e246633e20c68ccabe7bd3959b3cc122fe07ba7173f7bbb4d1603240ef4e75c5ecf565c1b0e27b1f55861d962028ad87e

  • SSDEEP

    3072:tq6EgY6iwrUj7wKDwPoHC17J2PyDITAltySK5NcZqf7D341eqiOLibBOE:EqY6i7wPMu7J2PykTAryfNcZqf7DIfL

Score
10/10
buy tg @fatherofcardersredline

Malware Config

Extracted

Family

redline

Botnet

BUY TG @FATHEROFCARDERS

C2

91.92.240.171:32837

Signatures

  • RedLine payload 1 IoCs
  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 49e82525e09dec7a7cb5bf10425f6b95c3204490c07bc8d86b2879e0f7b95bfa
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections