Overview

overview

10

Static

static

10

2756-220-0...ry.exe

windows7-x64

2756-220-0...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    2756-220-0x0000000000220000-0x000000000025E000-memory.dmp

  • Size

    248KB

  • MD5

    0418feffd8b0fbd33dd5ff3e44d405ab

  • SHA1

    3b05ae3c835381cfcabf9432cbb50d772aae62e9

  • SHA256

    a70da5f2bc8ebc0afe43a37169423c2f7ac52389f23a12df063f2343d5e8abb0

  • SHA512

    f47c4d0cecd9449fa6718560496acd95c7a251436cd0f69284b9a1498cd6263e0201940cbdb88a11c5dd30c29db3f502562c8c9500964f0440f35ad17e0933a1

  • SSDEEP

    3072:Ndng4InXNgcy9Wy3aPGcntCTt/qhGFlvDYLXZiTtzN:Tg/XNgcWr3aPu/5FlvDYLpqt

Score
10/10
@ytlogsbotredline

Malware Config

Extracted

Family

redline

Botnet

@ytlogsbot

C2

194.169.175.235:42691

Signatures

  • RedLine payload 1 IoCs
  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2756-220-0x0000000000220000-0x000000000025E000-memory.dmp
    .exe windows:4 windows x86


    Headers

    Sections