Overview

overview

10

Static

static

10

1988-118-0...ry.exe

windows7-x64

1988-118-0...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    1988-118-0x0000000000290000-0x00000000002C0000-memory.dmp

  • Size

    192KB

  • MD5

    aee0a08e19685d7bccf187caf68e4127

  • SHA1

    0a65c1861affb24742338934973e25e764d297f8

  • SHA256

    b48b23984610ad02a714af7f7aa201c42315e972e697d939f9b0e5294d7a1bd4

  • SHA512

    6767f243b29f90eb65cbe377b158430d060d22d25434781b6eff8405a12e2d72266a7c14259812dd1d0f451d773cf6784c18c3e58d1a769bca829bfd3eec3de4

  • SSDEEP

    3072:2BtDiwyqSVghBGfAGtTjxNKifvWPxnX8e8hy:KibuhM5ZmnPxnX

Score
10/10
rovnoredline

Malware Config

Extracted

Family

redline

Botnet

rovno

C2

83.97.73.130:19061

Attributes
  • auth_value

    88306b072bfae0d9e44ed86a222b439d

Signatures

  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 1988-118-0x0000000000290000-0x00000000002C0000-memory.dmp
    .exe windows x86


    Headers

    Sections