Overview

overview

10

Static

static

10

1956-54-0x...ry.exe

windows7-x64

1

1956-54-0x...ry.exe

windows10-2004-x64

5

Sharing

Copy URL Twitter E-mail

General

  • Target

    1956-54-0x0000000000300000-0x0000000000330000-memory.dmp

  • Size

    192KB

  • MD5

    e9ee494337cd75da098e86bc760f560f

  • SHA1

    10d3056f39dd59e9292c32027d58ba5e69c97799

  • SHA256

    e71f9fad1b40b340da5c420c2e30ef6d02c3844c5eb31e7cb29d9615c22d2471

  • SHA512

    90d0a6bd821ca4ef0d676478e25958392ff8c7582cc4791152b17a9aec3a3cc512b85c09848ebe880feb3d7d4a9e824ccb8fe9a30769b579db1e390ff93af081

  • SSDEEP

    1536:JhbEey6y36sv0W7TDGOIrHuyk7xk2W5/uGxNFVYQffbuclGHQ4N0GkR38e8h3:JlEebE6Cyk9i5/uGxNMS3azNk8e8h3

Score
10/10
brunoredline

Malware Config

Extracted

Family

redline

Botnet

bruno

C2

83.97.73.134:19071

Attributes
  • auth_value

    b23e240c277e85ce9d49d6165c0a2b48

Signatures

  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 1956-54-0x0000000000300000-0x0000000000330000-memory.dmp
    .exe windows x86


    Headers

    Sections