Overview

overview

10

Static

static

10

668-83-0x0...ry.exe

windows7-x64

1

668-83-0x0...ry.exe

windows10-2004-x64

5

Sharing

Copy URL Twitter E-mail

General

  • Target

    668-83-0x0000000000350000-0x0000000000380000-memory.dmp

  • Size

    192KB

  • MD5

    47c18440d719a7a70c1485d376374d49

  • SHA1

    a24a48b2c37949b8625220f457f22632734140f6

  • SHA256

    bb54e6fdf93b335e3766ea6aa273f63aaef74ded15b19d567d76cf798e023ccf

  • SHA512

    815c22875a1de58ff31e4b0ae313513a3e9031f690c0e66df4487db22784f333024ccb459de2baf687c372a4c1827397bcd23ccab3fa424ca2efdbd1608eaf90

  • SSDEEP

    1536:xhbEey6y36sv0W7TDGOIrHuyk7xk2W5/uGxNFVYQffbuclGHQ4N0GkRQ8e8h3:xlEebE6Cyk9i5/uGxNMS3azNj8e8h3

Score
10/10
brunoredline

Malware Config

Extracted

Family

redline

Botnet

bruno

C2

83.97.73.134:19071

Attributes
  • auth_value

    b23e240c277e85ce9d49d6165c0a2b48

Signatures

  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 668-83-0x0000000000350000-0x0000000000380000-memory.dmp
    .exe windows x86


    Headers

    Sections