Overview

overview

10

Static

static

10

5764-445-0...ry.exe

windows7-x64

5764-445-0...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    5764-445-0x00000000001C0000-0x00000000001DE000-memory.dmp

  • Size

    120KB

  • MD5

    d33f711e820b9df00f04cc917092124d

  • SHA1

    126f7fb27c8df2fe3da108fea885bf70ed2a12c7

  • SHA256

    dd4fed6738171468052571f4dd25eefeb38eadb8c9cfdef2d85cda54733a0fc8

  • SHA512

    dac8ded1438b7a4aa4cd090ad55506b7a5ac1851f3e4d6a3b4177ebf5ae9ccfc19765257152561bd5787d8c26d05be8d9b994cc836719063409d5f4ec62db0b0

  • SSDEEP

    3072:73HcjBPe7NerE+CrFkDSuOkZDcXiqEqVXI:7eGKDRAXb

Score
10/10
6012068394_99redline

Malware Config

Extracted

Family

redline

Botnet

6012068394_99

C2

https://pastebin.com/raw/8baCJyMF

Signatures

  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 5764-445-0x00000000001C0000-0x00000000001DE000-memory.dmp
    .exe windows:4 windows x86


    Headers

    Sections