General

  • Target

    fe3d5eada886fc65609662d036e1e3c9989265c3e80f8d36562790cd276a9257

  • Size

    339KB

  • MD5

    3ed352e80a8319f580a10cfbf2d23858

  • SHA1

    bd46951f3a0015b9cb5d9b566493b9189dd0db9d

  • SHA256

    fe3d5eada886fc65609662d036e1e3c9989265c3e80f8d36562790cd276a9257

  • SHA512

    cc25e6ae584374d142234150578bf75b766fa6af188801f8cd1fef1a33f56655127120537e8049efcc5d99d3edb8b64c3a747e7d972bd647712c85728ae3fa3c

  • SSDEEP

    6144:nbDQmioYCCAYp5fRZOVANlZ1iJ5ZccG7uMR9NX23BoIgPEDZCO4lw1JedPlC:nbDQ7LpDcVAN1lDm3BoIgPEDZCO4lw1H

Score
10/10

Malware Config

Extracted

Family

redline

Botnet

24.01

C2

37.220.86.164:29170

Attributes
  • auth_value

    1c7f0aa21138601b5201a3a4a0123991

Signatures

  • Redline family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • fe3d5eada886fc65609662d036e1e3c9989265c3e80f8d36562790cd276a9257
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections