Overview

overview

10

Static

static

10

cc Gen+Che...i0.exe

windows7-x64

10

cc Gen+Che...i0.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    cc Gen+CheckerbyDaySkii0.rar

  • Size

    3.2MB

  • MD5

    0d346302af554594a4e3e99f27d63cac

  • SHA1

    cb95fa1fa774c2789efea961acf256c4a44fd106

  • SHA256

    bae78ca8b47c5eb30b7db127e0c8ec889536719d55e4deab8ddff49799069ab7

  • SHA512

    11fbf7a114bba618471ab88b6aca947a5740408ade883ad787e7943ea0f887702913c88b4458def7f14d728e785e14c5ff10933df307fd91758fc1d99f9c7232

  • SSDEEP

    49152:3uMMWJtR+6RHBcz/IAU0fEQ/zBQqJhewKU6xGMTeI/zI/vcAR4YsTg9NIGf0ks:+M9bpRxZgECDjeoMTeeuvcK4YEg92GMb

Score
10/10
cheatredlinesectoprat

Malware Config

Extracted

Family

redline

Botnet

cheat

C2

86.13.96.164:2066

Signatures

  • RedLine payload 1 IoCs
  • Redline family
    redline
  • SectopRAT payload 1 IoCs
  • Sectoprat family
    sectoprat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • cc Gen+CheckerbyDaySkii0.rar
    .rar
  • cc Gen+CheckerbyDaySkii0/Data/1.dat
  • cc Gen+CheckerbyDaySkii0/Data/2.dat
  • cc Gen+CheckerbyDaySkii0/Data/3.dat
  • cc Gen+CheckerbyDaySkii0/Panel.exe.config
  • cc Gen+CheckerbyDaySkii0/cc Gen+CheckerbyDaySkii0.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections

  • cc Gen+CheckerbyDaySkii0/serviceSettings.json
  • cc Gen+CheckerbyDaySkii0/telegramChatsSettings.json