Overview

overview

10

Static

static

10

2220-122-0...ry.exe

windows7-x64

1

2220-122-0...ry.exe

windows10-2004-x64

5

Sharing

Copy URL Twitter E-mail

General

  • Target

    2220-122-0x0000000000440000-0x0000000000470000-memory.dmp

  • Size

    192KB

  • MD5

    32dc5624344647c6c74ff49deda4bc08

  • SHA1

    924d5a2bcd99b38851f08841f02afffabc178159

  • SHA256

    9d02d38afc6c353542ac2f712ca9dbdf3d96a38477b1f987b6de4ed18069de1e

  • SHA512

    d7977b8ccb07b8955f225f0dce77b65eeb51c303b099c802079cea6138fb5a56aac7f0186596ad593f96ea8c3fe3c96dd310704826bb6adf72e06df9f087664e

  • SSDEEP

    3072:OO64zyFlJDGx0HqSYxNXUfMim4G3D8e8hE:if1s0HZ8em4G3D

Score
10/10
normredline

Malware Config

Extracted

Family

redline

Botnet

norm

C2

77.91.68.70:19073

Attributes
  • auth_value

    1514e6c0ec3d10a36f68f61b206f5759

Signatures

  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2220-122-0x0000000000440000-0x0000000000470000-memory.dmp
    .exe windows x86


    Headers

    Sections