General

  • Target

    b644eef5d770dbf32ee4f8cfd4adee5b20903343731cfc534f00ebfdad22ce05N.exe

  • Size

    175KB

  • MD5

    1525426eb530090f2ea448a20dcd8c70

  • SHA1

    2a664333c6ce5be3628f49a548ff4c7fa990932d

  • SHA256

    b644eef5d770dbf32ee4f8cfd4adee5b20903343731cfc534f00ebfdad22ce05

  • SHA512

    de6cfcdd509bb8de75b060c925ecab360739a73220e30a3e46ef0a559fdb429e4e630fbc2628cc10595de8d9cfb63d3eb4af2b50cf0e8d6d5810d53167d37a8b

  • SSDEEP

    3072:6xqZWFFa7E6T8v1YFD8+e/5N8h9v7xNn2pU9f2MKTV/wi4lr55R9TxlnsPsUw0jw:oqZcviFIB8h5

Score
10/10

Malware Config

Extracted

Family

redline

Botnet

zaza

C2

176.113.115.145:4125

Attributes
  • auth_value

    48bf44c663fe3c1035fb4dd0b91fde5d

Signatures

  • RedLine payload 1 IoCs
  • Redline family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • b644eef5d770dbf32ee4f8cfd4adee5b20903343731cfc534f00ebfdad22ce05N.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections