Overview

overview

10

Static

static

10

1612-55-0x...ry.exe

windows7-x64

10

1612-55-0x...ry.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    1612-55-0x0000000000350000-0x0000000000378000-memory.dmp

  • Size

    160KB

  • MD5

    aa9b7e8a04b90d25ac7d32cd88b18f9d

  • SHA1

    6851f402c8c901ee59e79af1a33f4b9f9e9ae3e1

  • SHA256

    84c98dc32ee98a14c5e186fde9137e432b3a4392240831d3136e9669dc7c9f76

  • SHA512

    384c2f51a0eda2136014c0807780a7468a1cf4c6b8748a61d8825edbca1b8429cdfef8e185601466930e8d098c22a57cd12e5d4ddd7e06345f3494fcdc7d562d

  • SSDEEP

    1536:wm0QyVAu6bZRF6ZkDoK+1GOyonqVIy2ybCPnbu7+QMPjiiK0wuei1sia4xjES:J0QyVARbE25oSNrboo7wiiKhNrS

Score
10/10
koi_fixredline

Malware Config

Extracted

Family

redline

Botnet

KOI_FIX

C2

gang-bang.online:14444

splinterleands.com:14444
Attributes
  • auth_value

    d7e70f943e12617abdc907834033a02c

Signatures

  • RedLine payload 1 IoCs
  • Redline family
    redline

Files

  • 1612-55-0x0000000000350000-0x0000000000378000-memory.dmp
    .exe windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections