Overview

overview

10

Static

static

10

2124-3-0x0...ry.exe

windows7-x64

2124-3-0x0...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    2124-3-0x0000000000400000-0x000000000043E000-memory.dmp

  • Size

    248KB

  • MD5

    4237a98e824654d26e7fea3b004d1f8d

  • SHA1

    d945e002b535ca4bb9aadcf40f890a652ee993fd

  • SHA256

    b0d48844f090281d196c7c9134bccce9eb5a7b878bb6add9efe14bb515da32b9

  • SHA512

    87ad8ee4ad2ae29b236748caeb96c75a10cf886b610483b1712361995a3067a4b6b13afe02e66e7f2ff5299cf06788fb95365ecbf1ccb20e64b2a2dd26dd092e

  • SSDEEP

    6144:/KMispNgc0GN9nsRX3a/8qSHxJ9piexXTi:CMXpNgc0Gu3aw9piexXTi

Score
10/10
@black_santa21redline

Malware Config

Extracted

Family

redline

Botnet

@Black_Santa21

C2

94.142.138.4:80

Signatures

  • RedLine payload 1 IoCs
  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2124-3-0x0000000000400000-0x000000000043E000-memory.dmp
    .exe windows:4 windows x86


    Headers

    Sections