Overview

overview

10

Static

static

10

1532-119-0...ry.exe

windows7-x64

1532-119-0...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    1532-119-0x00000000001F0000-0x0000000000220000-memory.dmp

  • Size

    192KB

  • MD5

    d4be839a262684559f4c322404a79ed5

  • SHA1

    2b5b0ad9f02442644a3c6ba1957ed75e93f60355

  • SHA256

    b758592db1f0c3d08e7ddcd7dbf32ee24d982df1d1ea91af354c383195100445

  • SHA512

    338d9b857dc4f43c9a8f919d2a193c944d9fab14372f859732752852275cd4fc30875238da8e7bd298143d72b9e21a1edb65e817fe91b33348565d9ab57fad6e

  • SSDEEP

    1536:oy1dH8Hd36sv0W7T6QJ3rH3yk0I8pDUm46Z92kwk4XNBjkuv23Wfr1zaRXDxv6V9:oy3KDlRy38i00xNKe/Jq7Bocl98e8hy

Score
10/10
crazyredline

Malware Config

Extracted

Family

redline

Botnet

crazy

C2

83.97.73.129:19068

Attributes
  • auth_value

    66bc4d9682ea090eef64a299ece12fdd

Signatures

  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 1532-119-0x00000000001F0000-0x0000000000220000-memory.dmp
    .exe windows x86


    Headers

    Sections