Overview

overview

10

Static

static

10

61f8ca6c5a...3f.exe

windows7-x64

10

61f8ca6c5a...3f.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    61f8ca6c5ad3ded68304f5704f87b4bb32ce299d6d87e170ce0e589081083f3f

  • Size

    169KB

  • MD5

    b488c7fd5d522b1f15182f1813caf4ef

  • SHA1

    cd6bbc9928b7b61f344955fa24b200730059e83a

  • SHA256

    61f8ca6c5ad3ded68304f5704f87b4bb32ce299d6d87e170ce0e589081083f3f

  • SHA512

    7dacca30a07dc72ed9548a9a9259ae0a1187c52ae78fb9b4f3ef55b8c950bbce1dd0caa974c4d14836beeb19a1b32cc5b74a3fa28af9faf8158f5a6a68c9f445

  • SSDEEP

    1536:TwFNOqlVZRGWM+y+rlwj6n7bDRo3aTGqVWbucDcQzD383wYkb8e8hS:MXozj67RcqVizBzD3d8e8hS

Score
10/10
drozredline

Malware Config

Extracted

Family

redline

Botnet

droz

C2

77.91.124.145:4125

Attributes
  • auth_value

    d099adf6dbf6ccb8e16967104280634a

Signatures

  • RedLine payload 1 IoCs
  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 61f8ca6c5ad3ded68304f5704f87b4bb32ce299d6d87e170ce0e589081083f3f
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections