Overview

overview

10

Static

static

10

build.exe

windows7-x64

10

build.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    build.exe

  • Size

    95KB

  • MD5

    e8afc5d2f39046a91011cdd4649f3893

  • SHA1

    006656fd6dc3ffdff0c9df315a118989687d8570

  • SHA256

    56c53a1881b08c4a8f162b405ff950de48b601d1459e514dfb86410fb57f205a

  • SHA512

    f62050ad1f78de21a5ed71bc8a0ea904d1a3332a66aaf26d11ffe07c0a1566c76449e89a2813905cc6fc97b72f7bf4a420ab12b03cd956d57461da64d2c0d285

  • SSDEEP

    1536:tqsYrq9oOlbG6jejoigIn43Ywzi0Zb78ivombfexv0ujXyyed2w3teulgS6p5:byCoGYn+zi0ZbYe1g0ujyzdO5

Score
10/10
cheatredlinesectoprat

Malware Config

Extracted

Family

redline

Botnet

cheat

C2

127.0.0.1:7

Signatures

  • RedLine payload 1 IoCs
  • Redline family
    redline
  • SectopRAT payload 1 IoCs
  • Sectoprat family
    sectoprat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • build.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections