Overview

overview

10

Static

static

10

1776-56-0x...ry.exe

windows7_x64

1776-56-0x...ry.exe

windows10-2004_x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1776-56-0x0000000000400000-0x0000000000420000-memory.dmp

  • Size

    128KB

  • Sample

    220513-zmlarabeg3

  • MD5

    0914e80c7ef8e6fb772734e0f66c279c

  • SHA1

    1dfce381895c009a2b39758e62d04844806841c5

  • SHA256

    32065fc899275660132bd5eeced51b1790e2701993e4cc0487fe725b03fb0860

  • SHA512

    37dbdd4b8660867ed472be31fac06a7f94818fa9bb5af67f2ef656805f0d5f9e8591843c8ccac257f0a40ce536481a6e23f4f821510213468fc9bfa7b2289eff

Score
10/10
redline1

Malware Config

Extracted

Family

redline

Botnet

1

C2

lisongealma.xyz:80

Attributes
  • auth_value

    5f7063331aee56b8535fe77efc265597

Targets

    • Target

      1776-56-0x0000000000400000-0x0000000000420000-memory.dmp

    • Size

      128KB

    • MD5

      0914e80c7ef8e6fb772734e0f66c279c

    • SHA1

      1dfce381895c009a2b39758e62d04844806841c5

    • SHA256

      32065fc899275660132bd5eeced51b1790e2701993e4cc0487fe725b03fb0860

    • SHA512

      37dbdd4b8660867ed472be31fac06a7f94818fa9bb5af67f2ef656805f0d5f9e8591843c8ccac257f0a40ce536481a6e23f4f821510213468fc9bfa7b2289eff

    Score
    1/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks