Overview

overview

10

Static

static

10

2436-104-0...ry.exe

windows7-x64

2436-104-0...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    2436-104-0x00000000006A0000-0x00000000006F2000-memory.dmp

  • Size

    328KB

  • MD5

    911d14a70fbf1e1d373487247f1cf138

  • SHA1

    6b1572f11f13cc6c1e201999833a091eb462895b

  • SHA256

    c6c0aea4d5d749b2fc5d8e76bcda93fd6fec896d183f80e56e59a28da21310bc

  • SHA512

    6690e5b93359687bf9dcbd5118e90ea4783565e3bbbad6533703ba50c560cb798267c8daa9db9cf4d749fd366ebcf94a6d941dec6f24f1d29980fb622beb23ad

  • SSDEEP

    3072:KcZqf7D34xp/0+mAOkyovcQQgIAB1fA0PuTVAtkxz53RceqiOL2bBOA:KcZqf7DIjnjXxB1fA0GTV8knkL

Score
10/10
diamotrixredline

Malware Config

Extracted

Family

redline

Botnet

Diamotrix

C2

176.111.174.140:1912

Signatures

  • RedLine payload 1 IoCs
  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2436-104-0x00000000006A0000-0x00000000006F2000-memory.dmp
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections