General
-
Target
97b8e017d9459357292e3e25e0a343aedcaf28c18ec4a05985995a0be9495984.exe
-
Size
300KB
-
MD5
4a13cca1b960fd69697a4c69105c851c
-
SHA1
3a71263e57ffa4a056bbb649d7173dbf7046c1da
-
SHA256
97b8e017d9459357292e3e25e0a343aedcaf28c18ec4a05985995a0be9495984
-
SHA512
d411ac647b6dececf30c8823d8cebf68848817338ce143030219688f0b32852fbc52721089a74ec98ce05e46532a55483b689bc446610a94e4fa029f5b885c72
-
SSDEEP
3072:ecZqf7D34Bp/0+mAwkyg4eQEgPQB1fA0PuTVAtkxze3RweqiOL2bBOA:ecZqf7DITnWVcB1fA0GTV8kUQL
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
DANEK
C2
195.177.92.88:1912
Signatures
-
RedLine payload 1 IoCs
-
Redline family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
97b8e017d9459357292e3e25e0a343aedcaf28c18ec4a05985995a0be9495984.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections