redline | 938c17aedc57dfe05994ec9d45969d710c1c2c78f489e2619f5e19977ac30b28 | Triage

Sharing

General

Target

2584-135-0x0000000000400000-0x0000000000428000-memory.dmp
Size

160KB
Sample

221206-qfl42aec3s
MD5

81256266e29538d5f28f8a2f8c4f4deb
SHA1

00a12ec2d75a84c13ad8b75282635e6e583268f0
SHA256

938c17aedc57dfe05994ec9d45969d710c1c2c78f489e2619f5e19977ac30b28
SHA512

6e3037b0f3712e8d50489a6c5ce7be2a740f035c1cd1c20b89046e6e0d1b809f97983da4fca5db49b94767aa12505c8144ec395a1be505decc2e56816ee64a6c
SSDEEP

3072:YYO/ZMTFHf+aR2RAYQDOO9vgvJxPJmWF4ySP+h0SSU4:YYMZMBHfdYtcvama6+h

Score

10^/10

redline jiguli3

Malware Config

Extracted

Family

redline

Botnet

jiguli3

C2

78.47.191.142:63772

Attributes

auth_value
53e96f4ace67a12e6d299eccb2d774a1

Targets

- Target
  
  2584-135-0x0000000000400000-0x0000000000428000-memory.dmp
- Size
  
  160KB
- MD5
  
  81256266e29538d5f28f8a2f8c4f4deb
- SHA1
  
  00a12ec2d75a84c13ad8b75282635e6e583268f0
- SHA256
  
  938c17aedc57dfe05994ec9d45969d710c1c2c78f489e2619f5e19977ac30b28
- SHA512
  
  6e3037b0f3712e8d50489a6c5ce7be2a740f035c1cd1c20b89046e6e0d1b809f97983da4fca5db49b94767aa12505c8144ec395a1be505decc2e56816ee64a6c
- SSDEEP
  
  3072:YYO/ZMTFHf+aR2RAYQDOO9vgvJxPJmWF4ySP+h0SSU4:YYMZMBHfdYtcvama6+h
Score

1^/10
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2