Overview

overview

10

Static

static

10

1188-57-0x...ry.exe

windows7-x64

10

1188-57-0x...ry.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    1188-57-0x00000000021F0000-0x0000000002224000-memory.dmp

  • Size

    208KB

  • MD5

    9dea4157a61cdf959ea08005d6b44241

  • SHA1

    83daa336d8cd95ad2cc6bb4ca43752e735f76554

  • SHA256

    607dc80d9bc97c568285136937c599bbf982a2ea8d8f55e45471d06f9b32520e

  • SHA512

    8a60400328163b9c84ff0524f7d75e9e3e926ae2693f9369de693c388bc8ae497a2f5cf9bd08fd8865a946e6d7c366746701ebedc00ff562e5094ece9d0cd647

  • SSDEEP

    3072:Q6ds69A+pFhQwCEZgs2BRgDxLXao3v+m1+4+MgzWM8e8hl:hds6tFhQ8lDpfmm1+hyM

Score
10/10
logsdiller cloud (telegram: @logsdillabot)redline

Malware Config

Extracted

Family

redline

Botnet

LogsDiller Cloud (Telegram: @logsdillabot)

C2

147.135.231.58:39396

Attributes
  • auth_value

    c2955ed3813a798683a185a82e949f88

Signatures

  • RedLine payload 1 IoCs
  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 1188-57-0x00000000021F0000-0x0000000002224000-memory.dmp
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections