Overview

overview

10

Static

static

10

1388-220-0...ry.exe

windows7-x64

1388-220-0...ry.exe

windows10-2004-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1388-220-0x0000000000220000-0x000000000025E000-memory.dmp

  • Size

    248KB

  • MD5

    9744197b676a48935a98bc174507b2fe

  • SHA1

    8b24fde120c4a2b7fe2773ad94479ed184aa66b5

  • SHA256

    7fd453e56d9d54e9874fdb90d250ee5a7794f7d10a687fd36f3d33dfebe7204c

  • SHA512

    8aa5062500cdd1456a058c99fe2bf75384abcc37b3a77228486985683fd269037ad26ae8256510dfd15ee746a327cbad284b991bd0826b5c8d49917cf3711233

  • SSDEEP

    3072:Nang4InXNgcy9Wy3aPGcntCTt/qhGFlvDYLXZiTtzN:mg/XNgcWr3aPu/5FlvDYLpqt

Score
10/10
@ytlogsbotredline

Malware Config

Extracted

Family

redline

Botnet

@ytlogsbot

C2

194.169.175.235:42691

Signatures

  • RedLine payload 1 IoCs
  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 1388-220-0x0000000000220000-0x000000000025E000-memory.dmp
    .exe windows:4 windows x86


    Headers

    Sections