Overview

overview

10

Static

static

10

4004-112-0...ry.exe

windows7-x64

4004-112-0...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    4004-112-0x0000000000790000-0x00000000007E4000-memory.dmp

  • Size

    336KB

  • MD5

    7d6f7a72fed167b92aff398d5f7c5ce2

  • SHA1

    b79c09ad17d4cd01b9b7f12c4a84b9598026183d

  • SHA256

    8d7df2383858cb3352f91e0db952cd5cf2c08b15ce3f42b1ceeebf4c06553670

  • SHA512

    5698963c721ab0885df55dee3d2d99cc3d51ce341631270b7a9cb7d4396094deaa7d67978c4c8488a49c9043282b32eb0fd898d779f4021bc776c7e1065eb477

  • SSDEEP

    3072:kA05OJdM+K9F3OFq70W09SIg8Ikn2YSxx1m6MRqfjDv/YUeqiOL2bBOE:sma9Y40r8IIDxx9MRqfjD4aL

Score
10/10
@oni912redline

Malware Config

Extracted

Family

redline

Botnet

@oni912

C2

45.15.156.209:40481

Signatures

  • RedLine payload 1 IoCs
  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 4004-112-0x0000000000790000-0x00000000007E4000-memory.dmp
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections