Overview

overview

10

Static

static

10

2016-243-0...ry.exe

windows7-x64

2016-243-0...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    2016-243-0x0000000000670000-0x00000000006A2000-memory.dmp

  • Size

    200KB

  • MD5

    2884f931c8b44f4f56a518d68e14c391

  • SHA1

    da3270b5184ff60d504d494063c0109f55382bfa

  • SHA256

    8144aa796be3274e1312b28ecb19fc593fcecde0eac3ad9e97fda2c0cb0ab8ce

  • SHA512

    6c0fb2043f22bfd97abe4ec02dacddd5e42cda6e6d70ff1c5cfd6dbda84d0840d2bf81c9244e94683f1eff4fec33ae4c6e72937b8ba4d5064b53c395f47c0f3f

  • SSDEEP

    3072:IxqZWPTa9ApGvgiOTcdkeZ59xhmHxNn2pU9f2MKTV/wi4lr55R9TxlnsPsUw0jOF:2qZvgiO6Jxh

Score
10/10
dubkaredline

Malware Config

Extracted

Family

redline

Botnet

dubka

C2

193.233.20.13:4136

Attributes
  • auth_value

    e5a9421183a033f283b2f23139b471f0

Signatures

Files

  • 2016-243-0x0000000000670000-0x00000000006A2000-memory.dmp
    .exe windows x86


    Headers

    Sections