Overview

overview

10

Static

static

10

544-97-0x0...ry.exe

windows7-x64

1

544-97-0x0...ry.exe

windows10-2004-x64

5

Sharing

Copy URL
Twitter E-mail

General

  • Target

    544-97-0x0000000000350000-0x0000000000380000-memory.dmp

  • Size

    192KB

  • MD5

    6e4749f81706b38ad6e4734dea4611c6

  • SHA1

    4f76a2c0c744ee00b05c6a0c454d1aa9144a0b3e

  • SHA256

    7a8ecee4a39a1fcff06ca7383018b0e491277e47dd9da60d894aa1e2f94b8275

  • SHA512

    5ba7fc3976e81530a76709e0b0a03292f77895b1f12fc6e39bbb31777410fea642dd65be6dfb5e1aa383906388258dbff8dc9610343a41151ba80a2d05d4942c

  • SSDEEP

    1536:+hbEey6y36sv0W7TDGOIrHuyk7xk2W5/uGxNFVYQffbuclGHQ4N0GkRQ8e8h3:+lEebE6Cyk9i5/uGxNMS3azNj8e8h3

Score
10/10
brunoredline

Malware Config

Extracted

Family

redline

Botnet

bruno

C2

83.97.73.134:19071

Attributes
  • auth_value

    b23e240c277e85ce9d49d6165c0a2b48

Signatures

  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 544-97-0x0000000000350000-0x0000000000380000-memory.dmp
    .exe windows x86


    Headers

    Sections