Overview

overview

10

Static

static

10

2860-0-0x0...ry.exe

windows7-x64

2860-0-0x0...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    2860-0-0x0000000000240000-0x0000000000262000-memory.dmp

  • Size

    136KB

  • MD5

    90ba8602ebc970b5a259d0a785f116b0

  • SHA1

    65d36077245ca6202a39a0944bebeb6e24186bf4

  • SHA256

    6eb6bee965fe67eb807b7e032ed49b75caa789f175589451d90d8affc73284d5

  • SHA512

    3275ab03e5dc314811267cfca1bf08cadb2d79db3143946fef554d0064c5351383d811fe62416ec800d2eabbe0daba5810537e33c96eecafca5da02d71f9363a

  • SSDEEP

    1536:jAcbDr5JpAmS4lZyNRxCuCL+22Q4c3P9pdKU5GNby+xXmflMLps6T:jT7j+22QDhFKyoWi66T

Score
10/10
5637482599redline

Malware Config

Extracted

Family

redline

Botnet

5637482599

C2

https://pastebin.com/raw/NgsUAPya

Signatures

  • RedLine payload 1 IoCs
  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2860-0-0x0000000000240000-0x0000000000262000-memory.dmp
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections