Overview

overview

10

Static

static

10

2728-662-0...ry.exe

windows7-x64

1

2728-662-0...ry.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    2728-662-0x00000000012E0000-0x000000000131E000-memory.dmp

  • Size

    248KB

  • MD5

    192d91157537b218c884c14b892e463d

  • SHA1

    5a363c9a6af84938425311491f7a36d76ba691e4

  • SHA256

    570e27bffca5380003f4fce2960cec2955673e14fc1fcb4bb525a75888dba889

  • SHA512

    53efcbc138a947c44d35e26798034252dda96453869771a3bf3b0ad238019a83fd48629d0dfac5fe9b7ca9da104c1fca83c6dc5897dba75ef8867d20d28b665a

  • SSDEEP

    6144:AgrADDNgc6jYb9PXl3/f8FuAqSkiLWD+a+:nrEDNgc6jM2LO+a+

Score
10/10
tests2redline

Malware Config

Extracted

Family

redline

Botnet

tests2

C2

185.216.70.238:37515

Signatures

  • RedLine payload 1 IoCs
  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2728-662-0x00000000012E0000-0x000000000131E000-memory.dmp
    .exe windows:4 windows x86


    Headers

    Sections