Overview

overview

10

Static

static

10

2728-21-0x...ry.exe

windows7-x64

2728-21-0x...ry.exe

windows10-2004-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2728-21-0x0000000000400000-0x000000000043C000-memory.dmp

  • Size

    240KB

  • MD5

    961ee9631618110ec2a5ab67a0a589e9

  • SHA1

    e2d0a9b26714d6bd9a8dadeb4bcbf66339704dcc

  • SHA256

    79d03a3d990620a639752bd9f593a197df990dad8d6f34943eb24dbcc8d1b3a0

  • SHA512

    f1bf93695d70f2b8e245ba14d45cf471b292fb99b6594ab9ffa113751669f9a1d1422ca60c499a5719736ad0e3427895b2a3c83b112f684606d9363157d4994e

  • SSDEEP

    3072:ULNIvuw7I7Ngc0sYJ5rRy7RdeH4dpRSddi1Sg5egkKSL:Uymw7I7NgcRUrRyOc07i1Swdv

Score
10/10
13redline

Malware Config

Extracted

Family

redline

Botnet

13

C2

77.91.68.235:9486

Signatures

  • RedLine payload 1 IoCs
  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2728-21-0x0000000000400000-0x000000000043C000-memory.dmp
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections