General
-
Target
f2614cdc6365a908705c66bdaa12e51c39964fbc4748d3a68a410fbfdfdf945e.exe
-
Size
300KB
-
MD5
6aa1007c3391995062cf00a00b195627
-
SHA1
5eecc040b2403cd6144a9f525c60fb9a2f3b1e80
-
SHA256
f2614cdc6365a908705c66bdaa12e51c39964fbc4748d3a68a410fbfdfdf945e
-
SHA512
ac9dc953b585e7f98b7baf930f98c61320457ded138850929cd11aa116bf469a9ed17ff2a3a2e60caaff0c9af3f852c896b5a8ea1a31efdc2cded6092e606c2c
-
SSDEEP
3072:acZqf7D34bp/0+mA+kyI7BQwg02+B1fA0PuTVAtkxzS3RMeqiOL2bBOA:acZqf7DIFnfmcB1fA0GTV8kE0L
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
RAF
C2
51.103.174.63:1912
Signatures
-
RedLine payload 1 IoCs
-
Redline family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
f2614cdc6365a908705c66bdaa12e51c39964fbc4748d3a68a410fbfdfdf945e.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections