Overview

overview

10

Static

static

10

772-83-0x0...ry.exe

windows7-x64

1

772-83-0x0...ry.exe

windows10-2004-x64

5

Sharing

Copy URL Twitter E-mail

General

  • Target

    772-83-0x00000000002A0000-0x00000000002D0000-memory.dmp

  • Size

    192KB

  • MD5

    97dcbc1dbbe09e8dc9cbe0c58dbfa420

  • SHA1

    dfaa1c32e3dcea5eb1fbaa7d4ae43dd3c6dd48ce

  • SHA256

    b4c29ec8eda0d52ad2ad2936d05f094a30cb9b321ae9215a3cda98b54b80b521

  • SHA512

    0c1adfc56d9c7df42ac9cc5e0d95a1b6c2ece15ca85f94bbc858d15bda6592bf063b1d3b90e8c32ba6f8c683bdcf5be17a56d5b24b7dd947008b7021ced2bbf1

  • SSDEEP

    1536:XhbEey6y36sv0W7TDGOIrHuyk7xk2W5/uGxNFVYQffbuclGHQ4N0GkR18e8h3:XlEebE6Cyk9i5/uGxNMS3azNK8e8h3

Score
10/10
brunoredline

Malware Config

Extracted

Family

redline

Botnet

bruno

C2

83.97.73.134:19071

Attributes
  • auth_value

    b23e240c277e85ce9d49d6165c0a2b48

Signatures

  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 772-83-0x00000000002A0000-0x00000000002D0000-memory.dmp
    .exe windows x86


    Headers

    Sections