redline | 80ff75a1e970b6e73a5af9b032799be63b48ddfa234b218f840e598b83bc3f20 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3064-506-0x0000000000380000-0x00000000003BE000-memory.dmp
Size

248KB
Sample

231106-rp3ntadc94
MD5

4c577b5a6b7f38106aa4a9f50920e545
SHA1

dbad3dee70388371827c87e7a887bd4bc3ba605c
SHA256

80ff75a1e970b6e73a5af9b032799be63b48ddfa234b218f840e598b83bc3f20
SHA512

5ffe634b69e881261ee4cdb91ecbdfa0c822885c76ae9d93fc3e2b0c6dc1425820dd2ba556197915a72380ec46d88dc9c5f6593b1091666701ce36b210168c7b
SSDEEP

3072:JVyymrtnYNgctkfHrUkFTQmX1DJVt/qqfb2/fluHdOLy:LyymJYNgctwLU21/Rb2/fY9O

Score

10^/10

redline yt&team cloud

Malware Config

Extracted

Family

redline

Botnet

YT&TEAM CLOUD

C2

185.216.70.238:37515

Targets

- Target
  
  3064-506-0x0000000000380000-0x00000000003BE000-memory.dmp
- Size
  
  248KB
- MD5
  
  4c577b5a6b7f38106aa4a9f50920e545
- SHA1
  
  dbad3dee70388371827c87e7a887bd4bc3ba605c
- SHA256
  
  80ff75a1e970b6e73a5af9b032799be63b48ddfa234b218f840e598b83bc3f20
- SHA512
  
  5ffe634b69e881261ee4cdb91ecbdfa0c822885c76ae9d93fc3e2b0c6dc1425820dd2ba556197915a72380ec46d88dc9c5f6593b1091666701ce36b210168c7b
- SSDEEP
  
  3072:JVyymrtnYNgctkfHrUkFTQmX1DJVt/qqfb2/fluHdOLy:LyymJYNgctwLU21/Rb2/fY9O
Score

1^/10
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

yt&team cloudredline

behavioral1

behavioral2