Overview

overview

10

Static

static

10

2704-287-0...ry.exe

windows7-x64

2704-287-0...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    2704-287-0x0000000000670000-0x00000000006A0000-memory.dmp

  • Size

    192KB

  • MD5

    496cffd4576303cab92cd724b027ae11

  • SHA1

    18a89da311b5ae2dbfb7168933bf8690087a03ea

  • SHA256

    50c967baf91bac98c7aa670a293421de2d9fbb03e2ea657da628001b6b944097

  • SHA512

    a326d401f55c9cd2f2a64467e6b2a23b8ad178a22e78faf9a0a8fd09bace6e2a5c21fe73f2e51914133ef8b4048018e3498b772b99f5084db98d9f6704d9a788

  • SSDEEP

    3072:ZAWi/g1IzuRb5xNAKY73zOyuj++0V8e8hk:Zzi/+VCHuyuj++0V

Score
10/10
nowaredline

Malware Config

Extracted

Family

redline

Botnet

nowa

C2

77.91.124.49:19073

Attributes
  • auth_value

    6bc6b0617aa32bcd971aef4a2cf49647

Signatures

  • RedLine payload 1 IoCs
  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2704-287-0x0000000000670000-0x00000000006A0000-memory.dmp
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections