Overview

overview

10

Static

static

10

704-148-0x...ry.exe

windows7-x64

1

704-148-0x...ry.exe

windows10-2004-x64

5

Sharing

Copy URL Twitter E-mail

General

  • Target

    704-148-0x0000000000320000-0x0000000000350000-memory.dmp

  • Size

    192KB

  • MD5

    72df8e0cbdafdb8d74645f81fe92387d

  • SHA1

    11f8d783a6017769847024e3ef18ed87d17f5c26

  • SHA256

    16ad7d7f3a3cdee0e3a479e8ca4717e93a3a2d8c1f6ff38e4616761effc2ac48

  • SHA512

    5eecf53c653dacaa2b3a3ab198f911204c24c980f292b9062412785b62f0e7dac36537cf0eac510dcef3e336f928fef144de89fd861415ebe8cae016ee78a9f8

  • SSDEEP

    1536:ehbEey6y36sv0W7TDGOIrHuyk7xk2W5/uGxNFVYQffbuclGHQ4N0GkR98e8h3:elEebE6Cyk9i5/uGxNMS3azNi8e8h3

Score
10/10
brunoredline

Malware Config

Extracted

Family

redline

Botnet

bruno

C2

83.97.73.134:19071

Attributes
  • auth_value

    b23e240c277e85ce9d49d6165c0a2b48

Signatures

  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 704-148-0x0000000000320000-0x0000000000350000-memory.dmp
    .exe windows x86


    Headers

    Sections