Overview

overview

10

Static

static

10

2840-190-0...ry.exe

windows7-x64

2840-190-0...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    2840-190-0x0000000000020000-0x000000000003E000-memory.dmp

  • Size

    120KB

  • MD5

    bf7cdbc2665c6cb6d8f4da7399d539f9

  • SHA1

    72ac9f0ab7afc25c2fad35478a90f24b543e49b3

  • SHA256

    36824eb79171f8dbca08d2d3aab3361a9d9880bac99751a5c327ba784a1c97d3

  • SHA512

    09ee6a20d9677ff08f278382ff6f9fc05a6097ae84fa0842ccc77f5cb40bb72fc319ffa485daa292e67dae91c74588aa50d30ec2b06f1346541e08620bc093f6

  • SSDEEP

    3072:j3HcjBPe7NerE+CrFkDSuOkZDcXiqEqVX6:jeGKDRAXb

Score
10/10
6012068394_99redline

Malware Config

Extracted

Family

redline

Botnet

6012068394_99

C2

https://pastebin.com/raw/8baCJyMF

Signatures

  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2840-190-0x0000000000020000-0x000000000003E000-memory.dmp
    .exe windows:4 windows x86


    Headers

    Sections