Overview

overview

10

Static

static

10

1516-55-0x...ry.exe

windows7-x64

1

1516-55-0x...ry.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1516-55-0x0000000000090000-0x00000000000BA000-memory.dmp

  • Size

    168KB

  • MD5

    0a0d9f8f55d737eb79832e9424e8941d

  • SHA1

    26e218b9a183af6e10b3bfc017d00eebf611d92c

  • SHA256

    e29efbf302b9a9b01ab9c6518448c7dc2b938c476e643a63ccc6c354622448dd

  • SHA512

    14c6883e59da959d7f5ade1552f6f1aeb1b40e4cf0fb9d57f5962fbfb3fc3daadec79d4e9309a53d6b6465490e66a6e0badd8223c77864ed9a4c2cca99490c71

  • SSDEEP

    3072:oV+m5cnQmRSGKCCA7ArhhWJuXTz7vhOZa8e8h8:ojy2XGJSvhO8

Score
10/10
@pedikgay23redline

Malware Config

Extracted

Family

redline

Botnet

@pedikgay23

C2

94.142.138.4:80

Attributes
  • auth_value

    e9d701cddf7b090816911374be38aa05

Signatures

  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 1516-55-0x0000000000090000-0x00000000000BA000-memory.dmp
    .exe windows x86


    Headers

    Sections