Overview

overview

10

Static

static

10

1080-538-0...ry.exe

windows7-x64

1080-538-0...ry.exe

windows10-2004-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1080-538-0x0000000000AF0000-0x0000000000B2E000-memory.dmp

  • Size

    248KB

  • MD5

    2d1ca24a76f247f551ff7b4e83da74f1

  • SHA1

    420133be503602808d0674e81c8d3d733f26a468

  • SHA256

    cadfb6f446184c4a6a66698dc63e62ca2ad7f90383180c6e9c23acd8e8788f35

  • SHA512

    7694e64f43ccb3d9965061c7886acdec69bc14fc0e0e4ff54f4ca81d8e4633f6b30d3c7d4cfe7e7cf5253ebd3794459527816ddf10fe5f9cdb74bd82e33f047e

  • SSDEEP

    3072:2tJXRMeZYncNgckxQdxCr1d2t/q5yoQVZL53pRzzXZQAQ:2JMeucNgckedxCDo/doQVZdZRzzXZQ

Score
10/10
kukishredline

Malware Config

Extracted

Family

redline

Botnet

kukish

C2

77.91.124.55:19071

Signatures

  • RedLine payload 1 IoCs
  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 1080-538-0x0000000000AF0000-0x0000000000B2E000-memory.dmp
    .exe windows:4 windows x86


    Headers

    Sections