Overview

overview

10

Static

static

10

2176-1-0x0...ry.exe

windows7-x64

2176-1-0x0...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    2176-1-0x0000000000240000-0x000000000027E000-memory.dmp

  • Size

    248KB

  • MD5

    d859d1360622bee49dc285e1969a1200

  • SHA1

    3ca83a4fa784f89aabc8eb3d4e846eb8b0284002

  • SHA256

    ccfb2f0eb3aff30615807ececd9e8870de03df80e1ed894f64edb1c990244d33

  • SHA512

    b2159cfcdef82f038a0a619ae27fba50a2faed3ab8c665ae964cf56c5964ebd6a979925da5f834bfb0121e438038ed9ba9b23b6ccf1b46a1c3ffbd3cf3bb1836

  • SSDEEP

    3072:N6ng4InXNgcy9Wy3aPGcntCTt/qhGFlvDYLXZiTtzX:qg/XNgcWr3aPu/5FlvDYLpqt

Score
10/10
@ytlogsbotredline

Malware Config

Extracted

Family

redline

Botnet

@ytlogsbot

C2

194.169.175.235:42691

Signatures

  • RedLine payload 1 IoCs
  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2176-1-0x0000000000240000-0x000000000027E000-memory.dmp
    .exe windows:4 windows x86


    Headers

    Sections