Overview

overview

10

Static

static

10

4156-22-0x...ry.exe

windows7-x64

4156-22-0x...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    4156-22-0x0000000000400000-0x0000000000452000-memory.dmp

  • Size

    328KB

  • MD5

    cb9a09ee8f54402fdbd53c6e7f0cde3e

  • SHA1

    8b8ccad0fb5fe73ef03c3b93b23d7c30df7d02da

  • SHA256

    4bc0e6021439ee61eae0dbd8e9f205ec7513e31deddbe091517f1769da26305f

  • SHA512

    b94c987dcdb3216d91ad2939bb72ea16a440b81258b5b5f70ec4a9e44d514b3bd9ce9c28d5caa6ca588f72a5bb06fd161eece49539aec22b9e20761748dd26f0

  • SSDEEP

    3072:5q6EgY6iHrUje2pQwPjpyD+0eHTA9tAkKvIcZqf7D34leqiOLibBO0:IqY6irwP8q0eHTAzArIcZqf7DIvL

Score
10/10
logsdiller cloud (telegram: @logsdillabot)redline

Malware Config

Extracted

Family

redline

Botnet

LogsDiller Cloud (Telegram: @logsdillabot)

C2

5.42.65.50:33080

Signatures

  • RedLine payload 1 IoCs
  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 4156-22-0x0000000000400000-0x0000000000452000-memory.dmp
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections