Overview

overview

10

Static

static

10

1148-56-0x...ry.exe

windows7-x64

1148-56-0x...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    1148-56-0x0000000000080000-0x00000000000A8000-memory.dmp

  • Size

    160KB

  • MD5

    8e4d380666b60a51e356a3c051ba73e5

  • SHA1

    de1993af34d4957cf080f47e28b030d2bde16f8b

  • SHA256

    9af377cec414e0b510b737ef7d6bbe1baac832b9a9fd52407da08fcd5e7b5cbc

  • SHA512

    f825763d2b1a29870b43a69d0c8c9f0d77f905f18f230f6c706815114d569cbd66f63a26868ae38de64b3d827ab4f47b99a5b619c303ec2ad5377dabb0bf7cb8

  • SSDEEP

    3072:5YO/ZMTFva+9ZFT9/i6/AJHOWFRyRPeheSSIu:5YMZMBvaaZv66TDpeh

Score
10/10
logsdiller cloud (tg: @logsdillabot)redline

Malware Config

Extracted

Family

redline

Botnet

LogsDiller Cloud (TG: @logsdillabot)

C2

145.239.202.9:4120

Attributes
  • auth_value

    3a050df92d0cf082b2cdaf87863616be

Signatures

  • RedLine payload 1 IoCs
  • Redline family
    redline

Files

  • 1148-56-0x0000000000080000-0x00000000000A8000-memory.dmp
    .exe windows x86


    Headers

    Sections