Overview

overview

10

Static

static

10

1940-54-0x...ry.exe

windows7-x64

1940-54-0x...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    1940-54-0x0000000000220000-0x0000000000250000-memory.dmp

  • Size

    192KB

  • MD5

    4c54b87fa0a9d4583b55987fb51485f8

  • SHA1

    6d13a8520887b71cbc474117356641fb231ce9da

  • SHA256

    52dcd8ee7b2905aa7aa036862e0006029eadac408e9a413692b116287600dac0

  • SHA512

    209c7096e2819e20cc6e03294823699d9d1638d5cea39ede622889a0d7975001f1013ea3f143879ea02e4f961fe32272e970849c1ff9c737bafdc5846a864adf

  • SSDEEP

    1536:+10HMsE/qhVZCGWZlwP/t8WX6MiC6YdWjkTGqVOFWbuQ/xzuXheajx84wYkE8e8l:sbJq8WX6qdWjNqVOshoXheajxN8e8hH

Score
10/10
redline

Malware Config

Extracted

Family

redline

C2

94.142.138.147:48665

Attributes
  • auth_value

    d468f6bb554ad027b5acabe23b57fdd4

Signatures

  • RedLine payload 1 IoCs
  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 1940-54-0x0000000000220000-0x0000000000250000-memory.dmp
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections