Overview

overview

10

Static

static

10

1944-54-0x...ry.exe

windows7-x64

1944-54-0x...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    1944-54-0x0000000000220000-0x0000000000264000-memory.dmp

  • Size

    272KB

  • MD5

    fa4b3ea2043ffbf7b6ca94893eead364

  • SHA1

    146f6f0d0db09f72a19ddcdd5a6ea674bca15054

  • SHA256

    94389906211b3f50e0651d0eeefe8754ccd6a91b1ff05bf2c8c4d039077cb7c9

  • SHA512

    28d51744ebcff2ccc5ed1403db3bb58552dab11b0e7c0d08a692b09edb89941a886681579d8e9d7f1206514f2e37d9a291ad8473d3d25fc8137a8b722c7e0aa3

  • SSDEEP

    1536:QaaHQzahmNjDl7KoOV6McbLtuUI29+xn5MOZbV7cfaaPokMJrF:FaHzk9KV6PPth+xbBqiVkArF

Score
10/10
949112603redline

Malware Config

Extracted

Family

redline

Botnet

949112603

C2

pop.bantir.top:40309

Attributes
  • auth_value

    1e48e2a96609d87e60651c44e7deb1fa

Signatures

  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 1944-54-0x0000000000220000-0x0000000000264000-memory.dmp
    .exe windows x86


    Headers

    Sections