General
-
Target
0x0008000000016da7-31.dat
-
Size
300KB
-
MD5
c6e5f6c13c19e4f366c2f5c989965833
-
SHA1
5ccf4135651e28b54b7865ecc81a6924ce795371
-
SHA256
db08c075bbe23490deb3f53b954a4751a562e9548c839ce170ff5ea76d059d5a
-
SHA512
ca3cb032164bcc8d561113a409118fbae7da77ac8f29e7f663ac27837338525a82c0d8b482003e4ad76be9c052ccffa79a36249f371d05f1cd32cf29241050fb
-
SSDEEP
3072:GcZqf7D34Tp/0+mAykyoORQYg/xB1fA0PuTVAtkxz13R4eqiOL2bBOA:GcZqf7DItnmWhB1fA0GTV8kTYL
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
L0GZ
C2
93.185.156.125:1912
Signatures
-
RedLine payload 1 IoCs
-
Redline family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
0x0008000000016da7-31.dat
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections