Overview

overview

10

Static

static

10

1200-54-0x...ry.exe

windows7-x64

1200-54-0x...ry.exe

windows10-2004-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1200-54-0x0000000000230000-0x0000000000256000-memory.dmp

  • Size

    152KB

  • MD5

    31681f5d9aefad23c5b5c2299e8d5576

  • SHA1

    514633e4bc21f816f31c60b83a1b60c897088fd9

  • SHA256

    80dd315f82dafb11fde35559345e3ea9803e9973835a373feb4f9b72ffce47dd

  • SHA512

    519f4f5bd0b0a4ef6a2999191f9fcdeb43fab107b6fa14b6baac3f13aca4246aef6c3f0b20bcf0cd588634343a32b4811522a76302ac9cb9d054249ab1859db4

  • SSDEEP

    1536:GaLcnVHT1C/oTkJwY+fHqJHEIJbta4bhHjz0bV7a/OqSjsYgibfbFDKsRy:jLcZZ4qf6EY8ufMEGwYgafJly

Score
10/10
dddoskaredline

Malware Config

Extracted

Family

redline

Botnet

dddoska

C2

176.123.9.85:16482

Attributes
  • auth_value

    dbd6bfcca87386f8ca6361287d40712f

Signatures

  • RedLine payload 1 IoCs
  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 1200-54-0x0000000000230000-0x0000000000256000-memory.dmp
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections