Overview

overview

10

Static

static

10

2336-3-0x0...ry.exe

windows7-x64

2336-3-0x0...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    2336-3-0x0000000000400000-0x000000000043C000-memory.dmp

  • Size

    240KB

  • MD5

    555012061140ebe40c05eadf02b0be50

  • SHA1

    8790e328763f8277799e0956d63c7814847a3674

  • SHA256

    4d50defff6574a740481013f49ce317dce14d3664957d1e639d12cb7874f6cb7

  • SHA512

    0f9df2a8970dc392b0534c8805db6b32b1cb2badad9268a229d48edd3eee4eb65f93476ac95f7ad148f9739f4920c81896dfd768236018cee2c18fe575c1b779

  • SSDEEP

    6144:bmQmz7FNgcpbrWlPR6Q06dNSmu6Mh+2p6:bmQUNgcpbrDQFu6Mh+2p6

Score
10/10
hordaredline

Malware Config

Extracted

Family

redline

Botnet

horda

C2

194.49.94.152:19053

Signatures

  • RedLine payload 1 IoCs
  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2336-3-0x0000000000400000-0x000000000043C000-memory.dmp
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections