Overview

overview

10

Static

static

10

1948-59-0x...ry.exe

windows7-x64

1948-59-0x...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    1948-59-0x0000000000400000-0x0000000000420000-memory.dmp

  • Size

    128KB

  • MD5

    d3ec9be1c7f2bfb058ef93452d6edb62

  • SHA1

    d262e215e3afc069dc9f84eaebf434ebb879d847

  • SHA256

    bde8a21b249ad6c71d68aeb4bf1a9aace1653a5a25c7a27316c95e66b5e04801

  • SHA512

    4b40885a6f475896ed86506b5b9f7feff5abac22632c276f5d61ad5e2cfac4c8c5f6ed5d825f45d7b367e997076479a041e51128d0ad8d92eb3285a3cd39c275

  • SSDEEP

    1536:/RxakCr5Q2IlAJcGXh4SQtr8x+Tf4OgEl7fAHSE61buZNoxzrEg50wuei6EL:lCr5QKT8LT1gwfAH9eZ4g5hq

Score
10/10
usausasusaredline

Malware Config

Extracted

Family

redline

Botnet

usausasusa

C2

lanalannnal.xyz:81

Attributes
  • auth_value

    9b4ab1b0910d6acf744932450ba4ff5c

Signatures

  • RedLine payload 1 IoCs
  • Redline family
    redline

Files

  • 1948-59-0x0000000000400000-0x0000000000420000-memory.dmp
    .exe windows x86


    Headers

    Sections