Overview

overview

10

Static

static

10

1080-122-0...ry.exe

windows7-x64

1080-122-0...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    1080-122-0x00000000003D0000-0x0000000000400000-memory.dmp

  • Size

    192KB

  • MD5

    a644bd2003cf98dae69a4914309189ef

  • SHA1

    884d7e8fe14111271b8201730bd4617b4cf022fd

  • SHA256

    9fa4f25d094232ba46bb1a1d83583a2417b80a9a2bfb4e018038d46811f630aa

  • SHA512

    7738eaa0b002839cfbf4977fb742c417000eb5b24b03c9ed91a9cc8c91afd345cd6dcd48c5b68c789a53b98934af0eaffa731d404363f2f01b888a404f954e64

  • SSDEEP

    3072:5AF5KBstbkeNKZIhDDxNcaoMczCOk8e8hL:OXb33hDYjyOk

Score
10/10
jakoredline

Malware Config

Extracted

Family

redline

Botnet

jako

C2

77.91.124.49:19073

Attributes
  • auth_value

    3db90f2679ab2890874898c7c6d65799

Signatures

  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 1080-122-0x00000000003D0000-0x0000000000400000-memory.dmp
    .exe windows x86


    Headers

    Sections