Overview

overview

10

Static

static

10

2804-222-0...ry.exe

windows7-x64

2804-222-0...ry.exe

windows10-2004-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2804-222-0x0000000001000000-0x000000000103E000-memory.dmp

  • Size

    248KB

  • MD5

    584037564fae99c351a8c18bb99197e7

  • SHA1

    671b7340696547cef9df32d011e92d5268b6439a

  • SHA256

    0734ee5f2fea6752e2be5da477fabed0be4c69fdfaf15b73f978eb6a6532a771

  • SHA512

    03217504b3ea78add40bff63a24a1fdc5f5c3a14c649b20fdd892d847415ed9c1b4c821b533261518cfa6b515ac77ce409b9801f94b0b818f03bacc341623b34

  • SSDEEP

    3072:6tJXRMeZYncNgckxQdxCr1d2t/q5yoQVZL53pRzzXZQA4:6JMeucNgckedxCDo/doQVZdZRzzXZQ

Score
10/10
kukishredline

Malware Config

Extracted

Family

redline

Botnet

kukish

C2

77.91.124.55:19071

Signatures

  • RedLine payload 1 IoCs
  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2804-222-0x0000000001000000-0x000000000103E000-memory.dmp
    .exe windows:4 windows x86


    Headers

    Sections