Overview

overview

10

Static

static

10

1292-56-0x...ry.dll

windows7-x64

1

1292-56-0x...ry.dll

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    1292-56-0x0000000004910000-0x0000000004950000-memory.dmp

  • Size

    256KB

  • MD5

    5bc9c2e130c1885f1ae9709e553330ff

  • SHA1

    9458aa41e9c81b0c85fea3e4d6d2383246dd024f

  • SHA256

    49dea2c4a42845142045ef48b66bf7f887dcc65122d02854a42af635d6fb6cdd

  • SHA512

    b586b78f0b614b9a324d0d9ed58f31c026c906e6f007dec75d4e3ae816adbfcaa899d2597443362307dcaecffcdcd79f86161ac69e1036e7d09e6cdc0829582a

  • SSDEEP

    3072:y8e8hZJ6RbAxNjgOqFra6lE8e8hZuvd6gJBOc:yi+oara6lEJB9

Score
10/10
redline

Malware Config

Signatures

  • RedLine payload 1 IoCs
  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 1292-56-0x0000000004910000-0x0000000004950000-memory.dmp
    .dll windows x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections