Overview

overview

10

Static

static

10

1172-1005-...ry.exe

windows7-x64

1172-1005-...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    1172-1005-0x0000000000400000-0x0000000000426000-memory.dmp

  • Size

    152KB

  • MD5

    d1119046933c4353d536a9537e00fff9

  • SHA1

    9e9d9270d98cefef1eeca55b5e56739ce189c8f3

  • SHA256

    5109e950141afc51b510c2207b6c0a87835ae35b36d9d7599d5e13228b3d187e

  • SHA512

    66ff2657426fc750fb6a1926beef0c07ff5e2870cb960e815b96ef48229217e8dcf95dcb91646b2e68a07549ccd4723ddfd0ceca2578b78ad9a41f3ab560da98

  • SSDEEP

    1536:9akcnVHT1+/ov2ZGS+f7s+qppNdhaRhAj82bV7N/Po7usYgibfbFDKsR1:wkcZZ+aDs+O1MfC7XiYgafJl1

Score
10/10
stella13jredline

Malware Config

Extracted

Family

redline

Botnet

STELLA13J

C2

jidisianyr.shop:80

Attributes
  • auth_value

    3a3add4b19ca2b8102eb7cc21e493584

Signatures

  • RedLine payload 1 IoCs
  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 1172-1005-0x0000000000400000-0x0000000000426000-memory.dmp
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections