Overview

overview

10

Static

static

10

2416-5-0x0...ry.exe

windows7-x64

1

2416-5-0x0...ry.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2416-5-0x0000000000400000-0x0000000000430000-memory.dmp

  • Size

    192KB

  • MD5

    1dd44fd833a247bafd8b9e6aee78a8d8

  • SHA1

    a388ee59c1d6f3bb3f6c421c3b1472ee3c2906a1

  • SHA256

    f37049026990149ee31e95d5b201fab2b8785753ed82c3790806312bad1c3f3a

  • SHA512

    74ee315e3787fe355659b428c8b92954ba2ff68433d918ef11b027f5f8d9cf75c6369a277222a976a87cb4f0631a4ebaf1f00e3ef40162a11c835e223dc15a60

  • SSDEEP

    3072:a8a4JMUyI0i9ykuOMx/V8GztHteE0KHt67/tJB8e8hO:a8amyI0i9ykqztHteE0d7/tn

Score
10/10
@black_santa21redline

Malware Config

Extracted

Family

redline

Botnet

@Black_Santa21

C2

94.142.138.4:80

Attributes
  • auth_value

    5a06838de858adf9064d7d2c59f0d1f6

Signatures

  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2416-5-0x0000000000400000-0x0000000000430000-memory.dmp
    .exe windows:4 windows x86


    Headers

    Sections