Overview

overview

10

Static

static

10

2544-145-0...ry.exe

windows7-x64

2544-145-0...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    2544-145-0x0000000000BC0000-0x0000000000BFE000-memory.dmp

  • Size

    248KB

  • MD5

    5b5930ff37554510550dc9a6e6f02c56

  • SHA1

    5b2fb3f0d26eeb18deba91974cdae4511913c7b8

  • SHA256

    8578fdab7bbccfe0acd4511c23475555e413c99d865c31031f0b7f1ec284d85b

  • SHA512

    b87e003036b7058e3e6040b138a42f7eba2e82691106ead2ecf4224f44caf77a732e87aa23d625587b166238db0d474bef9b7a20430a1604eac8cec89ebb6618

  • SSDEEP

    3072:hJctOPGO2n1NgcU6YW8qu7SHBFt/qLdVPMxX/jEIgcR4:vDPGv1NgcUVWCuHF/CXPMxXLEfc

Score
10/10
@ytlogsbotredline

Malware Config

Extracted

Family

redline

Botnet

@ytlogsbot

C2

176.123.4.46:33783

Signatures

  • RedLine payload 1 IoCs
  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2544-145-0x0000000000BC0000-0x0000000000BFE000-memory.dmp
    .exe windows:4 windows x86


    Headers

    Sections