Overview

overview

10

Static

static

10

nib.exe

windows7-x64

10

nib.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    nib.exe

  • Size

    300KB

  • MD5

    878172cc88e015229262d44681ef880f

  • SHA1

    e0ff48bdc187cb7f2f7086b0b3bad9be0a00860e

  • SHA256

    22fe5b86d602fba9944d617df868bfaf133df6badbe1645c9b153b488498ac50

  • SHA512

    9d5ad4b9a0467be157350c90559af16aed0863f326b240cea77c085f1433495a1274ace09a3e5acfb57f37e68a8bef4a366e0e5ca84b87f9be39c0dd8338c5de

  • SSDEEP

    3072:icZqf7D34qp/0+mAckyQE1Q0glNvB1fA0PuTVAtkxzY3R0eqiOL2bBOA:icZqf7DIqnmyTB1fA0GTV8k68L

Score
10/10
niggerredline

Malware Config

Extracted

Family

redline

Botnet

nigger

C2

198.185.159.145:8204

Signatures

  • RedLine payload 1 IoCs
  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • nib.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections