Overview

overview

10

Static

static

10

1200-54-0x...ry.exe

windows7-x64

1

1200-54-0x...ry.exe

windows10-2004-x64

5

Sharing

Copy URL Twitter E-mail

General

  • Target

    1200-54-0x0000000000230000-0x0000000000260000-memory.dmp

  • Size

    192KB

  • MD5

    9cd37417bf87e0f9b1853f34ef2015e8

  • SHA1

    4f041dc205bcfef17a00c4515f2077ffbfbddf6a

  • SHA256

    0375f8267d5cf4bf3388f00c1d3d5e8f8b33fe1175e4fb708a10ce576e5bdaa2

  • SHA512

    5a32b2861c41e7c42ee461ee172a6d8b6ac9bb732e93446625c555bf115c97b5123b1e6f3c510eba6f51926ac169746539ecfce2e447a8c5923f84c3d5dc1384

  • SSDEEP

    1536:ZhbEey6y36sv0W7TDGOIrHuyk7xk2W5/uGxNFVYQffbuclGHQ4N0GkRK8e8h3:ZlEebE6Cyk9i5/uGxNMS3azN18e8h3

Score
10/10
brunoredline

Malware Config

Extracted

Family

redline

Botnet

bruno

C2

83.97.73.134:19071

Attributes
  • auth_value

    b23e240c277e85ce9d49d6165c0a2b48

Signatures

  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 1200-54-0x0000000000230000-0x0000000000260000-memory.dmp
    .exe windows x86


    Headers

    Sections