Overview

overview

10

Static

static

10

1308-97-0x...ry.exe

windows7-x64

1

1308-97-0x...ry.exe

windows10-2004-x64

5

Sharing

Copy URL Twitter E-mail

General

  • Target

    1308-97-0x00000000007D0000-0x0000000000800000-memory.dmp

  • Size

    192KB

  • MD5

    5559fdc86a1f60546b1058fbc73e9ecd

  • SHA1

    ee65fade072044ed5acfefd140968dd7072c84ad

  • SHA256

    52be87536572763bb6441546d5d5d3818c70121d0a459a6c88f3914e02077787

  • SHA512

    83ba52d4664eb276e7dcade874cf5f437bb5035c04d2030f43451daf83bdb11f929e7585073f38c4b0a9f0bbce98b7b4e61bf923c753d18ce581ebf0e3349cc3

  • SSDEEP

    1536:fhbEey6y36sv0W7TDGOIrHuyk7xk2W5/uGxNFVYQffbuclGHQ4N0GkR48e8h3:flEebE6Cyk9i5/uGxNMS3azN78e8h3

Score
10/10
brunoredline

Malware Config

Extracted

Family

redline

Botnet

bruno

C2

83.97.73.134:19071

Attributes
  • auth_value

    b23e240c277e85ce9d49d6165c0a2b48

Signatures

  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 1308-97-0x00000000007D0000-0x0000000000800000-memory.dmp
    .exe windows x86


    Headers

    Sections