Overview

overview

10

Static

static

10

2324-61-0x...ry.exe

windows7-x64

10

2324-61-0x...ry.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    2324-61-0x0000000002060000-0x0000000002094000-memory.dmp

  • Size

    208KB

  • MD5

    d6f791909ae5703a12a498a694a231a0

  • SHA1

    f209289e8f8672eb71b22dd6ed16c50c340b7114

  • SHA256

    805374c149c3857c3b33e34a5360a7306af54fa1fd3cd375247874dace0bd206

  • SHA512

    70876680538551c3f5814b8d61149f510c4befd68ec132d1ceaa828c134fff169ee931b63c59318e633f3dfda1960c251fa293caef039e4e496346d7a845a5b8

  • SSDEEP

    3072:j8vs69J56kC75iEd5b2B6lZsU8BOl2a/N4+khzu68e8hR:ovs6kkC7zBcjBOl2CNgi6

Score
10/10
logsdiller cloud (telegram: @logsdillabot)redline

Malware Config

Extracted

Family

redline

Botnet

LogsDiller Cloud (Telegram: @logsdillabot)

C2

147.135.165.22:17748

Attributes
  • auth_value

    c2955ed3813a798683a185a82e949f88

Signatures

  • RedLine payload 1 IoCs
  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2324-61-0x0000000002060000-0x0000000002094000-memory.dmp
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections