Overview

overview

10

Static

static

10

3004-116-0...ry.exe

windows7-x64

3004-116-0...ry.exe

windows10-2004-x64

Resubmissions

26/03/2024, 12:55

240326-p5va9sdf5t 10

14/03/2024, 14:42

240314-r3h7bsef9s 10

14/03/2024, 14:39

240314-r1nn2agg63 10

Sharing

Copy URL Twitter E-mail

General

  • Target

    3004-116-0x0000000000260000-0x0000000000290000-memory.dmp

  • Size

    192KB

  • MD5

    5fbdb348c4087a896a0bdd4e1206710b

  • SHA1

    d6fa4b984c9018578a40baeaf37dd6c938f6a88d

  • SHA256

    36a9493a782d78c68237320e5f5937abf202e9e1edef641a77168f4e396a7f5d

  • SHA512

    ea21be76e682d8ebf1b560ad640fb962fca4990e79d2b447a2d418d8d2e240a50eb1a018dfd86005e7c4b6588740b8a331b3cb646968f3b935ff4557dca20f35

  • SSDEEP

    1536:5lBA36sv0W7T1sjvrHzbNSISuiiB0J57TNyQGxNXLYQLrbuLh8yrEHVF+0GkRf8U:5rqCnNsZWSZ5GxN8yi8yIHVF+w8e8hO

Score
10/10
masharedline

Malware Config

Extracted

Family

redline

Botnet

masha

C2

77.91.68.48:19071

Attributes
  • auth_value

    55b9b39a0dae383196a4b8d79e5bb805

Signatures

  • RedLine payload 1 IoCs
  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 3004-116-0x0000000000260000-0x0000000000290000-memory.dmp
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections