Overview

overview

10

Static

static

10

2004-56-0x...ry.exe

windows7-x64

2004-56-0x...ry.exe

windows10-2004-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2004-56-0x0000000000400000-0x0000000000432000-memory.dmp

  • Size

    200KB

  • Sample

    230311-s35wrsab44

  • MD5

    d9d58a6c413eec25310a9945b5c648aa

  • SHA1

    cd5e98db9db40ee46d85f25e40e6b15cc06d50e0

  • SHA256

    3a8f82e518a4a75e793e2d1bc85382fbd8a1170bde47667485bf0bbca769cae8

  • SHA512

    ba9b1e89328f61ae00b0f1ca65eebb804e48e6a0ec4b803bce803a39375bea015ab714e98fc96fc3e6d49c572c52fb33023a13989ae979b7f045351be252ee8f

  • SSDEEP

    3072:NxqZWhBaKULo3gpfXcJbefN9Ah3/xNn2pU9f2MKTV/wi4lr55R9TxlnsPsUw0jO2:XqZwgpfsJOAh

Score
10/10
redlinetg

Malware Config

Extracted

Family

redline

Botnet

TG

C2

185.244.182.218:2027

Attributes
  • auth_value

    797af1930057d299397fd39ab31da9cc

Targets

    • Target

      2004-56-0x0000000000400000-0x0000000000432000-memory.dmp

    • Size

      200KB

    • MD5

      d9d58a6c413eec25310a9945b5c648aa

    • SHA1

      cd5e98db9db40ee46d85f25e40e6b15cc06d50e0

    • SHA256

      3a8f82e518a4a75e793e2d1bc85382fbd8a1170bde47667485bf0bbca769cae8

    • SHA512

      ba9b1e89328f61ae00b0f1ca65eebb804e48e6a0ec4b803bce803a39375bea015ab714e98fc96fc3e6d49c572c52fb33023a13989ae979b7f045351be252ee8f

    • SSDEEP

      3072:NxqZWhBaKULo3gpfXcJbefN9Ah3/xNn2pU9f2MKTV/wi4lr55R9TxlnsPsUw0jO2:XqZwgpfsJOAh

    Score
    1/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks