Overview

overview

10

Static

static

10

2376-54-0x...ry.exe

windows7-x64

2376-54-0x...ry.exe

windows10-2004-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2376-54-0x00000000002C0000-0x00000000002F0000-memory.dmp

  • Size

    192KB

  • MD5

    8ad036b0b95e82f41d5f1a6e7cc362f3

  • SHA1

    ab61f7d5d3dae10362ba7de82061f9009625c63f

  • SHA256

    0f2df1a9575f5f9be1fb169150cf7e8f99e014029b6d0838939902873c481725

  • SHA512

    6bb6340171254a0974f62cf015089505e968e9b8f7fa2223e67b3c85e31a61417bfcf7c180161a564bde20e2cc9117cbec6b7f7a2294983e860f542c20900f4f

  • SSDEEP

    3072:VfqoIM4239M2XyENTJ/xNOwMpma8+8gsD8e8hr:VVBiuJOMa8+8gsD

Score
10/10
logsredline

Malware Config

Extracted

Family

redline

Botnet

Logs

C2

157.254.164.98:28449

Attributes
  • auth_value

    2af59e648d80e1b57d24bd747369c991

Signatures

  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2376-54-0x00000000002C0000-0x00000000002F0000-memory.dmp
    .exe windows x86


    Headers

    Sections