Overview

overview

10

Static

static

10

2756-0-0x0...ry.exe

windows7-x64

2756-0-0x0...ry.exe

windows10-2004-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2756-0-0x00000000001C0000-0x00000000001FE000-memory.dmp

  • Size

    248KB

  • MD5

    9cc1fa8a6ee2166b6d438b19f934ca90

  • SHA1

    7ab6d3bbe708c2536908dbb362a2f71b662022a5

  • SHA256

    aca6ca80cdc7c93093b11fbe54f6c1228cff8986f02fa53ef6b6bfdf7a7d83bf

  • SHA512

    305cf473330f48afd6637a658acdfc1cbab5bcfaea1da182231f3ec66cc1663b809920a5540e2afa3384b1dcf952333a981239bac217c5cbdff04ac62c90b405

  • SSDEEP

    3072:y3Emyn4NgcHbTfb3UgH+5Kcyt/qDoThyiOnqWCLdkl:qE/4NgcHbrYge5Kj/FThyDnLCL

Score
10/10
yt&team cloudredline

Malware Config

Extracted

Family

redline

Botnet

YT&TEAM CLOUD

C2

194.169.175.235:42691

Signatures

  • RedLine payload 1 IoCs
  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2756-0-0x00000000001C0000-0x00000000001FE000-memory.dmp
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections