Overview

overview

10

Static

static

10

868-119-0x...ry.exe

windows7-x64

1

868-119-0x...ry.exe

windows10-2004-x64

5

Sharing

Copy URL Twitter E-mail

General

  • Target

    868-119-0x0000000000270000-0x00000000002A0000-memory.dmp

  • Size

    192KB

  • MD5

    05c75963fab78e8e06889f44431f7aec

  • SHA1

    6ce9ec15afe33065af135c012db7882b4883921d

  • SHA256

    3bc309ad290dcaee657d635f69b2817f9057aec271dd13e3166d90a5d5665f9b

  • SHA512

    ca1f27c42335e3bce987a149722b2f7ae766916e64357d677b0b1a5a75aaa1da5e256ad9012a1f98532e859314d4fa8d0b20a7e181097dd866bdfc3cceee52f9

  • SSDEEP

    1536:thbEey6y36sv0W7TDGOIrHuyk7xk2W5/uGxNFVYQffbuclGHQ4N0GkRe8e8h3:tlEebE6Cyk9i5/uGxNMS3azNJ8e8h3

Score
10/10
brunoredline

Malware Config

Extracted

Family

redline

Botnet

bruno

C2

83.97.73.134:19071

Attributes
  • auth_value

    b23e240c277e85ce9d49d6165c0a2b48

Signatures

  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 868-119-0x0000000000270000-0x00000000002A0000-memory.dmp
    .exe windows x86


    Headers

    Sections