Overview

overview

10

Static

static

10

c352ec002b...2N.exe

windows7-x64

10

c352ec002b...2N.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    c352ec002b18c2204b8ab54830dcf2552b205724fca676980a8af86e79558892N

  • Size

    175KB

  • MD5

    8913db732d8f5598e17ea399b4d6e540

  • SHA1

    e589726e190994b71b1fa0037c178a8642c205ec

  • SHA256

    c352ec002b18c2204b8ab54830dcf2552b205724fca676980a8af86e79558892

  • SHA512

    380e5da3aae55c2cda01e4df5ff6b6e96c99eeff81458e3c9ca10b455ac5f8b4b80ca9309d3edfdd110a1936b8890fe3b9fbc8b2a6e5a186f8b995e8d9eaa925

  • SSDEEP

    3072:WxqZWZRanU2n0rZaJKd4/eo5YYh8TxNn2pU9f2MKTV/wi4lr55R9TxlnsPsUw0jz:8qZgrZaIqwYh

Score
10/10
nordredline

Malware Config

Extracted

Family

redline

Botnet

nord

C2

176.113.115.145:4125

Attributes
  • auth_value

    ebb7d38cdbd7c83cf6363ef3feb3a530

Signatures

  • RedLine payload 1 IoCs
  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • c352ec002b18c2204b8ab54830dcf2552b205724fca676980a8af86e79558892N
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections