Overview

overview

10

Static

static

10

1972-942-0...ry.exe

windows7-x64

1972-942-0...ry.exe

windows10-2004-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1972-942-0x0000000000180000-0x00000000001BE000-memory.dmp

  • Size

    248KB

  • MD5

    c3974d487bf1fbd1080fe6a93546acaf

  • SHA1

    ef08f088d0f54804fdcf7453e1c9a46b88121ce7

  • SHA256

    35ee7429f177ae63e996c60b7a3c1a5b0b653c3bf386cd3460c522e09096f385

  • SHA512

    f58db9d1a08780f15adebc8dec6b441f3baf79df7b0973b08782692160996f3d9132a265e20b14bebe84ac0832014189b1e14a4a26974feff4344316abda9718

  • SSDEEP

    3072:IihvLpYnXNgc+jZ44OLqNaKe/Gbt/q6ubZovTqpwUybFhyb:I+lYXNgc+144OLquOZ/CZovTqHybFh

Score
10/10
gromeredline

Malware Config

Extracted

Family

redline

Botnet

grome

C2

77.91.124.86:19084

Signatures

  • RedLine payload 1 IoCs
  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 1972-942-0x0000000000180000-0x00000000001BE000-memory.dmp
    .exe windows:4 windows x86


    Headers

    Sections