Overview

overview

10

Static

static

10

2088-0-0x0...ry.exe

windows7-x64

2088-0-0x0...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    2088-0-0x0000000000160000-0x00000000001B2000-memory.dmp

  • Size

    328KB

  • MD5

    7c6081b3fddf607fe530818d17d624b5

  • SHA1

    150a7b278719d8787902123ce7c27cdf0ead617e

  • SHA256

    1f6e35def2dea02fe6160506f0dcfc3ce98df5bd54a573191c4309fefe01ff60

  • SHA512

    7c5d092e75f8f419b05ac493253077cb48597718764f5f66dc3359209b37b475b66a651e03b56659bacb19654bac76ae5d802c7c1e6cac6a755c4083bb8b3965

  • SSDEEP

    3072:v2wLEsYUQzNKtLUbWANieiZixKMD4UydbXwnJQjx9R6AgkVMRqT6Dv/YfeqiOL2w:OxbWxn1bRx98AXVMRqT6D4hL

Score
10/10
@mass1vexddredline

Malware Config

Extracted

Family

redline

Botnet

@mass1vexdd

C2

45.15.156.167:80

Signatures

  • RedLine payload 1 IoCs
  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2088-0-0x0000000000160000-0x00000000001B2000-memory.dmp
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections