Overview

overview

10

Static

static

10

2004-54-0x...ry.exe

windows7-x64

1

2004-54-0x...ry.exe

windows10-2004-x64

5

Sharing

Copy URL Twitter E-mail

General

  • Target

    2004-54-0x0000000000300000-0x0000000000330000-memory.dmp

  • Size

    192KB

  • MD5

    32ec8bd925d2bc4ef96d04eb4773568f

  • SHA1

    c8e723e0658290b0a0cdb742971be184c6f162f1

  • SHA256

    57c2f7e48b72ffeb75cd94e1005c0e0012453b4ee23fd2ba8859dd595ffcd002

  • SHA512

    7b42dc5e8533ea7c4f8fe7a3ec2a801874389455f807aec6b7c91429c44b62dfb8cf38a8c7a8c9cc7e27e5af36c152fe9a5e8ab6d3871ef3015e420d0c08d316

  • SSDEEP

    1536:NhbEey6y36sv0W7TDGOIrHuyk7xk2W5/uGxNFVYQffbuclGHQ4N0GkR38e8h3:NlEebE6Cyk9i5/uGxNMS3azNk8e8h3

Score
10/10
brunoredline

Malware Config

Extracted

Family

redline

Botnet

bruno

C2

83.97.73.134:19071

Attributes
  • auth_value

    b23e240c277e85ce9d49d6165c0a2b48

Signatures

  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2004-54-0x0000000000300000-0x0000000000330000-memory.dmp
    .exe windows x86


    Headers

    Sections