Overview

overview

10

Static

static

10

2076-0-0x0...ry.exe

windows7-x64

2076-0-0x0...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    2076-0-0x0000000000120000-0x0000000000172000-memory.dmp

  • Size

    328KB

  • MD5

    823b7b99f2376cd33612890de00fa22b

  • SHA1

    76d1767b644339c489ebb85e94ffd2150df39e9f

  • SHA256

    8a5ac349e788a5c260559a847d08a8f4114c5b15b52b536857edb60c5ef266bc

  • SHA512

    007cb2793b7a2965df9674e3e0fc248a2dcabdc813989ca114e2914cec4ea4777deff215b354cc1a0c6c8f06ebae29b350778dd2a70aafa2f4fd5d7b762a72a1

  • SSDEEP

    3072:B2CL6oYyQB51r1LMbsGNXiEOacCK9sEdYYX3nlHSx88RCAgkVMRqT6Dv/YseqiOx:IubswcCWYYlyx88IAXVMRqT6D4SL

Score
10/10
@fleksyyredline

Malware Config

Extracted

Family

redline

Botnet

@fleksyy

C2

45.15.156.167:80

Signatures

  • RedLine payload 1 IoCs
  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2076-0-0x0000000000120000-0x0000000000172000-memory.dmp
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections