Overview

overview

10

Static

static

10

2236-995-0...ry.exe

windows7-x64

2236-995-0...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    2236-995-0x00000000001E0000-0x000000000021E000-memory.dmp

  • Size

    248KB

  • MD5

    bf5f7655fe2ab8a1835de110de2d8871

  • SHA1

    b43b7c06c4b5d5a19a22a9d3e15ae56909663c95

  • SHA256

    37b27ed1072cee0be78487e61f76cbe967c66f16cedf54a176f5dae4acfe07e5

  • SHA512

    717d8392444dd234a03e0e9a569b7f3ad99080943c4e728845863e156c2c7a8616db54442400ca17af5b253a13cadb6f45eb6ebbef26118bd0b5b87cfcf9f9b4

  • SSDEEP

    3072:Pyng4InXNgcy9Wy3aPGcntCTt/qhGFlvDYLXZiTtzB:kg/XNgcWr3aPu/5FlvDYLpqt

Score
10/10
@ytlogsbotredline

Malware Config

Extracted

Family

redline

Botnet

@ytlogsbot

C2

194.169.175.235:42691

Signatures

  • RedLine payload 1 IoCs
  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2236-995-0x00000000001E0000-0x000000000021E000-memory.dmp
    .exe windows:4 windows x86


    Headers

    Sections