Overview

overview

10

Static

static

10

2460-81-0x...ry.exe

windows7-x64

2460-81-0x...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    2460-81-0x0000000000400000-0x0000000000450000-memory.dmp

  • Size

    320KB

  • MD5

    c7ac8ebd15c0dd0d611b37762805768e

  • SHA1

    aa026fbc568c050398afa799e78c63580303b88e

  • SHA256

    e0f401a5cf6b3fbbdca5d240b611c9718db76551ef7b47e45b549208df9b4fe4

  • SHA512

    287f908c94fcc0dba4e2106567b30c07e74809f243c325de9cadf8095b0ce06374c8d19e0ff04cad489dcc0029d31bbd3fbec76001e9bd5533deabc70ccb7f11

  • SSDEEP

    3072:mqFFrqwIOGtwygmQZweFapa4jdbJbYk0naVbhd4mTZbeHg/cZqf7D34teqiOLCbM:9BIOG2yAWUCdlTZSKcZqf7DIXL

Score
10/10
logsdiller cloud (tg: @logsdillabot)redline

Malware Config

Extracted

Family

redline

Botnet

LogsDiller Cloud (TG: @logsdillabot)

C2

5.42.65.129:2353

Signatures

  • RedLine payload 1 IoCs
  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2460-81-0x0000000000400000-0x0000000000450000-memory.dmp
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections