Overview

overview

10

Static

static

10

2720-17-0x...ry.exe

windows7-x64

1

2720-17-0x...ry.exe

windows10-2004-x64

3

Resubmissions

21/09/2024, 20:27

240921-y8sfhssbpl 10

21/09/2024, 11:02

240921-m47h4aygpn 10

Sharing

Copy URL Twitter E-mail

General

  • Target

    2720-17-0x0000000000400000-0x0000000000452000-memory.dmp

  • Size

    328KB

  • MD5

    fdede7b02cff626450b6feec6bbbd17c

  • SHA1

    aa91f2b8bf94c645a10a0f97121bd977a9898dd9

  • SHA256

    e429920acea048ba0fd44dc04106ab1285c963336ff4838c5407f55372d19a12

  • SHA512

    df0df27a696d910401566b5c37d9fe899ab923e5e347808f6a3723a7f7e57cc9212ce06718c21964f9b20c11fb398fad3525ebc03742b2a88d043afa443e78cc

  • SSDEEP

    3072:Nq6EgY6iXrUjrVcJKwPVTpcQ4cOpRCsbTAXtASiLgcZqf7D34VeqiOLibBOD:kqY6iIwPrc5ciCcTAdAxgcZqf7DI/L

Score
10/10
logsdiller cloud (tg: @logsdillabot)redline

Malware Config

Extracted

Family

redline

Botnet

LogsDiller Cloud (TG: @logsdillabot)

C2

193.233.255.84:4284

Signatures

  • RedLine payload 1 IoCs
  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2720-17-0x0000000000400000-0x0000000000452000-memory.dmp
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections