Overview

overview

10

Static

static

10

1740-54-0x...ry.exe

windows7-x64

1

1740-54-0x...ry.exe

windows10-2004-x64

5

Sharing

Copy URL Twitter E-mail

General

  • Target

    1740-54-0x0000000000270000-0x00000000002A0000-memory.dmp

  • Size

    192KB

  • MD5

    e80c2f251b534bb0165920e339c93210

  • SHA1

    ee072579900ebd206079d225c660fdf0ca6c2335

  • SHA256

    b40cc07fff480a477aacf7bdcb5feb61b04bd780e0a2a8523e938cf45a282248

  • SHA512

    a2f03ba1956faeacd9913617ff54eb0e1018accd418d36237a10949368f2ed25559de759b40646b5b6cc46b2f07edee92a4e178221af2790041084c8cdeceefa

  • SSDEEP

    1536:9hbEey6y36sv0W7TDGOIrHuyk7xk2W5/uGxNFVYQffbuclGHQ4N0GkRe8e8h3:9lEebE6Cyk9i5/uGxNMS3azNJ8e8h3

Score
10/10
brunoredline

Malware Config

Extracted

Family

redline

Botnet

bruno

C2

83.97.73.134:19071

Attributes
  • auth_value

    b23e240c277e85ce9d49d6165c0a2b48

Signatures

  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 1740-54-0x0000000000270000-0x00000000002A0000-memory.dmp
    .exe windows x86


    Headers

    Sections