Overview

overview

10

Static

static

10

1660-97-0x...ry.exe

windows7-x64

1

1660-97-0x...ry.exe

windows10-2004-x64

5

Sharing

Copy URL Twitter E-mail

General

  • Target

    1660-97-0x0000000000380000-0x00000000003B0000-memory.dmp

  • Size

    192KB

  • MD5

    90bc740420937d2f4a3197a0062955ce

  • SHA1

    016a3cec0b7705c0e34ffeedd1c11caf3f3c2ce1

  • SHA256

    8011e1d305c68295afc014d3ec8418f670453b015089aefba0fc1d2c427e65e6

  • SHA512

    55db8e3bd699cb195e4196af196d294f3315d2b9097a6dcfe965ea8b983470765c78bb5aa3bcf37d2a870fcffa807da8e1de840fa01479d4f0a276c70d1a7881

  • SSDEEP

    1536:OhbEey6y36sv0W7TDGOIrHuyk7xk2W5/uGxNFVYQffbuclGHQ4N0GkR/8e8h3:OlEebE6Cyk9i5/uGxNMS3azN88e8h3

Score
10/10
brunoredline

Malware Config

Extracted

Family

redline

Botnet

bruno

C2

83.97.73.134:19071

Attributes
  • auth_value

    b23e240c277e85ce9d49d6165c0a2b48

Signatures

  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 1660-97-0x0000000000380000-0x00000000003B0000-memory.dmp
    .exe windows x86


    Headers

    Sections