Overview

overview

10

Static

static

10

5860-340-0...ry.exe

windows7-x64

5860-340-0...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    5860-340-0x00000000001C0000-0x00000000001DE000-memory.dmp

  • Size

    120KB

  • MD5

    a93e60a9d384822e649ef93ddda9b2f8

  • SHA1

    d9fa4e73f16f09bc05b5fac426e5c8b9c5380ca9

  • SHA256

    2c845848c9cda9162888e583a52770c94f5fcae3389440cb55acf9a4ffd04d2f

  • SHA512

    97b60fa70f1da34191ee6e519eb5358baedcb140a790bb6ccebd003ace3426bcf427b7ab27e360ba336043e901b0e8b93d740f4fdbb34ea895f38d2d62ae3a1e

  • SSDEEP

    3072:U3HcjBPe7NerE+CrFkDSuOkZDcXiqEqVRI:UeGKDRAX1

Score
10/10
5141679758_99redline

Malware Config

Extracted

Family

redline

Botnet

5141679758_99

C2

https://pastebin.com/raw/8baCJyMF

Signatures

  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 5860-340-0x00000000001C0000-0x00000000001DE000-memory.dmp
    .exe windows:4 windows x86


    Headers

    Sections