Overview

overview

10

Static

static

10

1940-58-0x...ry.exe

windows7-x64

1940-58-0x...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    1940-58-0x0000000000400000-0x0000000000426000-memory.dmp

  • Size

    152KB

  • MD5

    a6eef8e009ce418d32cebec0f1609ccb

  • SHA1

    6d5ab1f12f9a1e52222ee0ce0c0affa086ac32f8

  • SHA256

    b45488b0bf5ec50994e4cf71bd9ee44ddbb28880962e12e3af240e29bf5cf90b

  • SHA512

    f7df4c13601806335361ce0683132dbdb321cfd3d529f231705f4128ab2384a8b761eaaeb7143b4b887c8ec3a96cf5d4fc8cf0d6948195e9adba2ba25665c313

  • SSDEEP

    1536:eaCGcnVHT1u/o3Q5O6+f7NWyZXcJz1/orgwhmjvCbV7g9OLE:rNcZZgKjNWMXm1M9eWWg

Score
10/10
@refuse22lkredline

Malware Config

Extracted

Family

redline

Botnet

@Refuse22lk

C2

5.42.64.70:45663

Attributes
  • auth_value

    0389210c523a825646e632803a501871

Signatures

  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 1940-58-0x0000000000400000-0x0000000000426000-memory.dmp
    .exe windows x86


    Headers

    Sections