redline | 9fcfdd95318e435a67dea8b96db585460c045a50156a8c4e88f4babf777c6f9b | Triage

Sharing

General

Target

308-3062-0x0000000000250000-0x0000000000280000-memory.dmp
Size

192KB
Sample

240304-la58haeh21
MD5

51f3831b44e00312edfbc57e3d1f5658
SHA1

54c31c1f6d93b765af4b0f79b9a10b931b3de746
SHA256

9fcfdd95318e435a67dea8b96db585460c045a50156a8c4e88f4babf777c6f9b
SHA512

8e7d9c6756bec218a9ba9a3336034421a0ba829e17d5b9c8f9915f128b0c12779b4b1ecbac7b745d61158f0b0a194d3711257ca9f87e353e745db52b81187260
SSDEEP

3072:Obo2i9G9tCQUqVY+FRV1Qw88GjEoy8e8hb:Obo2ik9E+F9Qw88GjEoy

Score

10^/10

redline zima

Malware Config

Extracted

Family

redline

Botnet

zima

C2

176.113.115.145:4125

Attributes

auth_value
2ef701d510c0d27e8a8e3270281678b1

Targets

- Target
  
  308-3062-0x0000000000250000-0x0000000000280000-memory.dmp
- Size
  
  192KB
- MD5
  
  51f3831b44e00312edfbc57e3d1f5658
- SHA1
  
  54c31c1f6d93b765af4b0f79b9a10b931b3de746
- SHA256
  
  9fcfdd95318e435a67dea8b96db585460c045a50156a8c4e88f4babf777c6f9b
- SHA512
  
  8e7d9c6756bec218a9ba9a3336034421a0ba829e17d5b9c8f9915f128b0c12779b4b1ecbac7b745d61158f0b0a194d3711257ca9f87e353e745db52b81187260
- SSDEEP
  
  3072:Obo2i9G9tCQUqVY+FRV1Qw88GjEoy8e8hb:Obo2ik9E+F9Qw88GjEoy
Score

3^/10
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2