Overview

overview

10

Static

static

10

2440-116-0...ry.exe

windows7-x64

2440-116-0...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    2440-116-0x0000000000310000-0x0000000000340000-memory.dmp

  • Size

    192KB

  • MD5

    577eb15ad6c06fe266078bbbc353b26f

  • SHA1

    cc1de6003fb5c521ec74998c32aaf4fa9cffa44e

  • SHA256

    cc0cf3c7c2af1bd0cdfd4b7e9fc4bb5727d4d51e3fd9de8ca90b6d29c398b118

  • SHA512

    f8c0316013688ae0cd9fd7870bc2a1816dadb9db7261c4b50b101a03bed3aaf09edafb5eb9572e43fd002ce9b0d41448c15fd6068c66d6f016ba77dad998e1d5

  • SSDEEP

    1536:/lBA36sv0W7T1sjvrHzbNSISuiiB0J57TNyQGxNXLYQLrbuLh8yrEHVF+0GkRm8U:/rqCnNsZWSZ5GxN8yi8yIHVF+t8e8hO

Score
10/10
masharedline

Malware Config

Extracted

Family

redline

Botnet

masha

C2

77.91.68.48:19071

Attributes
  • auth_value

    55b9b39a0dae383196a4b8d79e5bb805

Signatures

  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2440-116-0x0000000000310000-0x0000000000340000-memory.dmp
    .exe windows x86


    Headers

    Sections