Overview

overview

10

Static

static

10

2196-9-0x0...ry.exe

windows7-x64

2196-9-0x0...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    2196-9-0x0000000000400000-0x0000000000422000-memory.dmp

  • Size

    136KB

  • MD5

    51416b48177a654a9d4a27a3ba130082

  • SHA1

    510b9302138e908684b38558a241beadd281612f

  • SHA256

    d9ad1bb69887b21bd11599a22d633660c4310dd768a156ed7a30a9bc087b6175

  • SHA512

    4a640fb57acc16e9e04c47b15c082c4a5b8ae5e18265fc7b7f9860591b0521ff36c3dc890ba8c311e664febac91dce2336021ecf31f1a236512535ad1665fb32

  • SSDEEP

    1536:zreom7wJv8imS4qZyNxMCuCDGT1kRc/cVjpnrRWKkystINby+xXm8lM1GHG6A:zXNyGT1YFtnrRKysYyMWvQm6A

Score
10/10
657608463redline

Malware Config

Extracted

Family

redline

Botnet

657608463

C2

https://t.me/+7Lir0e4Gw381MDhi*https://steamcommunity.com/profiles/76561199693996100

Signatures

  • RedLine payload 1 IoCs
  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2196-9-0x0000000000400000-0x0000000000422000-memory.dmp
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections