Overview

overview

10

Static

static

10

2200-53-0x...ry.exe

windows7-x64

2200-53-0x...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    2200-53-0x0000000000400000-0x0000000000452000-memory.dmp

  • Size

    328KB

  • MD5

    6ba04465e2dac739695498abc4c0daa7

  • SHA1

    9ae4c4ba1f3b3ebaa25b65a1d21bc2db1cf57906

  • SHA256

    9b5e89f3e6edee11c2b8eb5babdd907504731d7d924fb7b269156a1d93b70157

  • SHA512

    11b29182162fe7f7ae7511018a575efe81fb3e16e25418fd6eecd5b97777680a0aa663a85415113654872f2d415e43b0dbcda0c5d6155fd57caeb1fddeb31bc1

  • SSDEEP

    3072:pq6EgY6igrUjXwwRwPf/Bvf1OxCfyJTAStA7KoZcZqf7D341eqiOLibBOx:4qY6i7wPxX1OMaJTAOA7ZcZqf7DIfL

Score
10/10
33redline

Malware Config

Extracted

Family

redline

Botnet

33

C2

194.36.178.33:47454

Signatures

  • RedLine payload 1 IoCs
  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2200-53-0x0000000000400000-0x0000000000452000-memory.dmp
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections