Overview

overview

10

Static

static

10

2024-54-0x...ry.exe

windows7-x64

2024-54-0x...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-54-0x0000000000230000-0x0000000000260000-memory.dmp

  • Size

    192KB

  • MD5

    aaf57a31fc6fe679ac9682e90feffc2b

  • SHA1

    8805f37db115e9e639af0f2f890b66d6dabb5b38

  • SHA256

    92db00695de51565b86546b301ea47367355da9ca37e76cf0eb4b3572d14abb4

  • SHA512

    1ea5493026ae568c15eb5d1e41755d4a0fade3d514bc75286f63b18c87878c96e84dd42f2c4d09abe993e73ebe8b674ff80e3c8551971b61d311986b828675d0

  • SSDEEP

    3072:2mtDiwyqSVghBGfAGtTjxNKifvWPxnl8e8hy:pibuhM5ZmnPxnl

Score
10/10
rovnoredline

Malware Config

Extracted

Family

redline

Botnet

rovno

C2

83.97.73.130:19061

Attributes
  • auth_value

    88306b072bfae0d9e44ed86a222b439d

Signatures

  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2024-54-0x0000000000230000-0x0000000000260000-memory.dmp
    .exe windows x86


    Headers

    Sections