Overview

overview

10

Static

static

10

2776-308-0...ry.exe

windows7-x64

2776-308-0...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    2776-308-0x0000000000020000-0x000000000003E000-memory.dmp

  • Size

    120KB

  • MD5

    2b82bc162df7e95f9fa803cda0f27cb9

  • SHA1

    892f66fa27f2628648b4845dce7830e78564ed11

  • SHA256

    6efe244f962dc1b83e5b19cf43ab02d2919fa118b3ad3f88124f5c4c74db5f53

  • SHA512

    c67cce696c536721b94f48894bede3e8a0e6a99b5f986b3e23b6630d6b2eedbb94557b2c2650573203451ab9235836ac1ab1bc4c9ed791292e1d219cb5157b35

  • SSDEEP

    3072:J3HcjBPe7NerE+CrFkDSuOkZDcXiqEqVR6:JeGKDRAX1

Score
10/10
5141679758_99redline

Malware Config

Extracted

Family

redline

Botnet

5141679758_99

C2

https://pastebin.com/raw/8baCJyMF

Signatures

  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2776-308-0x0000000000020000-0x000000000003E000-memory.dmp
    .exe windows:4 windows x86


    Headers

    Sections