Overview

overview

10

Static

static

10

2352-9-0x0...ry.exe

windows7-x64

2352-9-0x0...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    2352-9-0x0000000000400000-0x0000000000450000-memory.dmp

  • Size

    320KB

  • MD5

    0d934a2a72a8198f291307a4d328329a

  • SHA1

    746356f3d1babacef2e385a98d0b8aa62916fab5

  • SHA256

    a2f474cbf84e3d2d7f165797b72a8d7360c101890c0f4acdb142df2c6c69b9cd

  • SHA512

    adb712fa5ec15488e12419171550f0018f1ec57004b0b16619fe2005be342545a0d4edac0611e638343f932a7ce80bf61b3ba2cc2ef7b804e1f3b58dd980afdd

  • SSDEEP

    6144:tBIOGp2Gd+xPlzqMlSJNZyZcZqf7DI3L:tK+6MEkZcUzs3

Score
10/10
livetrafficredline

Malware Config

Extracted

Family

redline

Botnet

LiveTraffic

C2

4.185.137.132:1632

Signatures

  • RedLine payload 1 IoCs
  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2352-9-0x0000000000400000-0x0000000000450000-memory.dmp
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections