Overview

overview

10

Static

static

10

2216-0-0x0...ry.exe

windows7-x64

2216-0-0x0...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    2216-0-0x0000000000400000-0x0000000000430000-memory.dmp

  • Size

    192KB

  • MD5

    9fbf769254c4a4e3596475f7b2d97a9d

  • SHA1

    4ace09a84fd982ff4a2776769807f3affbc6dc1f

  • SHA256

    fcaf2bf1ead5b51efde1cb77f72491aa0181cbecb0cc2b2b2184dbbf37bf62c4

  • SHA512

    07e520eb50ba3ea62ceb5b476d29949a0ace67d1320aad348bbc0a7b63c509fe97c5d9b8946e39c017cd6ad7a3b1b278e90deb32e7a4017fee9cadafc567e658

  • SSDEEP

    3072:mUxxQs0iI0Rryf7OZmL9mhE02o7CC5RJs8e8hd:ZxkiI0RryfuhE0QC5Rq

Score
10/10
jamesredline

Malware Config

Extracted

Family

redline

Botnet

james

C2

77.91.124.82:19071

Attributes
  • auth_value

    619daacd1b235de863e564f0fe8feb6f

Signatures

  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2216-0-0x0000000000400000-0x0000000000430000-memory.dmp
    .exe windows:4 windows x86


    Headers

    Sections