Overview

overview

10

Static

static

10

996-143-0x...ry.exe

windows7-x64

996-143-0x...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    996-143-0x0000000000350000-0x0000000000378000-memory.dmp

  • Size

    160KB

  • MD5

    9ee3afa88a74ccc96d55bfcb30b6acd4

  • SHA1

    062173488e42b14d6dce94648b867f47527c9a14

  • SHA256

    922bafdb6afb5c9724c8747b47843d874949201f6efa99f7942ca1167d7e5d8f

  • SHA512

    37a4d91687f2d970aafd29a27cfec367dd34775efb2d57b74f17c636abd6f24da6a5f82074662eb199489be21050d82e70dee3e11019e45f7f6771a82b1f3637

  • SSDEEP

    3072:RYO/ZMTFzD64o7KzEnpoNuVzDFkyePjhGSSz6r:RYMZMBzD64pInpoNeN+jh9

Score
10/10
slovarik15btcredline

Malware Config

Extracted

Family

redline

Botnet

slovarik15btc

C2

78.153.144.3:2510

Attributes
  • auth_value

    bfedad55292538ad3edd07ac95ad8952

Signatures

  • RedLine payload 1 IoCs
  • Redline family
    redline

Files

  • 996-143-0x0000000000350000-0x0000000000378000-memory.dmp
    .exe windows x86


    Headers

    Sections