Overview

overview

10

Static

static

10

776-117-0x...ry.exe

windows7-x64

776-117-0x...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    776-117-0x00000000002E0000-0x0000000000310000-memory.dmp

  • Size

    192KB

  • MD5

    194337699b8b9281ae37f99e600b05e1

  • SHA1

    964abbd883a795c42587215678ef211cd442d9a6

  • SHA256

    3082a69909d3395cf35dd037c535dad8315cbccfe3f447b282923b7dc701dd50

  • SHA512

    c3750b3b19cedf5cf76439f69631b5480ee25ab0366130bcae3bb6935c56f93a727fc27098437d77ca9eaf46c02b532c7cc77446c9dcca4ffac17b492834d044

  • SSDEEP

    3072:2qtDiwyqSVghBGfAGtTjxNKifvWPxnu8e8hy:dibuhM5ZmnPxnu

Score
10/10
rovnoredline

Malware Config

Extracted

Family

redline

Botnet

rovno

C2

83.97.73.130:19061

Attributes
  • auth_value

    88306b072bfae0d9e44ed86a222b439d

Signatures

  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 776-117-0x00000000002E0000-0x0000000000310000-memory.dmp
    .exe windows x86


    Headers

    Sections