Overview

overview

10

Static

static

10

2200-0-0x0...ry.exe

windows7-x64

2200-0-0x0...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    2200-0-0x00000000001C0000-0x0000000000210000-memory.dmp

  • Size

    320KB

  • MD5

    247feb44086c7012c517d6db5a4e1ba8

  • SHA1

    0d4114c9c67ff8acf203a9141c82b4ed52a43e80

  • SHA256

    74f78e21d2ca5fc2ce915d1b46f3879f44ecb8ac7edbb3ee376d8985fc1e4079

  • SHA512

    55e85863ecabbf5fa00a8c2c11f1336bb32a2bbb1210efb789f98e3fcc7f0ae3dc1a3d305940b8ec63e1da21c31e6f7c7223d092d71100d046f83769c1029333

  • SSDEEP

    6144:tLqY6ibwPvfFUTA7A29cZqf7DI6lDszu4l9LQ3lfKzC:tL3wPXFbA29cUzs6WzpnIlfKz

Score
10/10
sampredline

Malware Config

Extracted

Family

redline

Botnet

SAMP

C2

147.45.47.36:39849

Signatures

  • RedLine payload 1 IoCs
  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2200-0-0x00000000001C0000-0x0000000000210000-memory.dmp
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections