Overview

overview

10

Static

static

10

97388-56-0...ry.exe

windows7-x64

97388-56-0...ry.exe

windows10-2004-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    97388-56-0x0000000000400000-0x0000000000420000-memory.dmp

  • Size

    128KB

  • MD5

    1ec8d66cf30572b2de89aca2a32b219f

  • SHA1

    93709590819f8d9e1745d6d5db425a0884a86288

  • SHA256

    058332af14d1a28bf15cfb5ef88d0b6027013090034e21931a66a82705a1ca2a

  • SHA512

    4e3ff6f6006894ce6d3b1d9eb6e062c8bb8258e94933d01bcef99fb4065dd1b5fe0fe629d6515b5031b0d8123f93043805261a68f1a47ea04054d7a0f197a225

  • SSDEEP

    3072:pcvFBgCYCpieID9L2eIrbzVcQcUMMODchw4EASNs:pcvOf9IrbB1cRchw4jS

Score
10/10
@youlie_lztredline

Malware Config

Extracted

Family

redline

Botnet

@youlie_lzt

C2

litrazalilibe.xyz:81

Attributes
  • auth_value

    4229399b49b4c8e5f0d0fcabd3052956

Signatures

  • RedLine payload 1 IoCs
  • Redline family
    redline

Files

  • 97388-56-0x0000000000400000-0x0000000000420000-memory.dmp
    .exe windows x86


    Headers

    Sections