Overview

overview

10

Static

static

10

5560-563-0...ry.exe

windows7-x64

5560-563-0...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    5560-563-0x00000000001D0000-0x00000000001EE000-memory.dmp

  • Size

    120KB

  • MD5

    ef6d4439e29d797b4a05a1ca3d43f618

  • SHA1

    75ba30abc33512395255454ebcebb6f9b793b7a7

  • SHA256

    0fe80a3f0b81548205f12caf207db61bc8de349d25171c140201cfdf7c345c03

  • SHA512

    ba613400c287c3c33312ed76b8b3d666fd3fcf59438facef43e7559adb287088fe78aaf50f1075bd32375a54b6e10d5456a5b6e2a39b89224a1d4ff526ef5c31

  • SSDEEP

    3072:e3HcjBPe7NerE+CrFkDSuOkZDcXiqEqVXD:eeGKDRAXb

Score
10/10
6012068394_99redline

Malware Config

Extracted

Family

redline

Botnet

6012068394_99

C2

https://pastebin.com/raw/8baCJyMF

Signatures

  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 5560-563-0x00000000001D0000-0x00000000001EE000-memory.dmp
    .exe windows:4 windows x86


    Headers

    Sections