Overview

overview

10

Static

static

10

2276-0-0x0...ry.exe

windows7-x64

2276-0-0x0...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    2276-0-0x00000000004F0000-0x0000000000542000-memory.dmp

  • Size

    328KB

  • MD5

    c80ad6a95cbfaab6c989b996631c0d1a

  • SHA1

    68da16fa46b399927dd43530ef1237e8122a0ab9

  • SHA256

    4fa1c43b3780b4aebf216c22ee3f5eee328cde07413ad3b498b15447cf237c5e

  • SHA512

    b8f5905dd1808861b9b7533ca5c1a2fa60f9e516ff21dc770f2dc641ce160df6d73f523fcd97de32df1895335ccdf4d879d760632a050e10995363f993ae82ca

  • SSDEEP

    3072:c2CL6oYyQB51r1LMbsGNXDCeC2XeB5mdeXjn7hPknxJRUAgkVMRqT6Dv/YVeqiOn:BubsOCmefEeXhsnxJiAXVMRqT6D4/L

Score
10/10
@mayotiqqredline

Malware Config

Extracted

Family

redline

Botnet

@mayotiqq

C2

45.15.156.167:80

Signatures

  • RedLine payload 1 IoCs
  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2276-0-0x00000000004F0000-0x0000000000542000-memory.dmp
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections