Overview

overview

10

Static

static

10

3740-251-0...ry.exe

windows7-x64

3740-251-0...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    3740-251-0x00000000007A0000-0x00000000007D0000-memory.dmp

  • Size

    192KB

  • MD5

    25f09a5b23e4ccf29549d9a174c7eb0a

  • SHA1

    60f575c34d86985eab1d8aaf45eb9aa021bf3f66

  • SHA256

    663fd54c5911db1188d213a7a94910d9f00338303b655165c5cda70df85a0068

  • SHA512

    27435d2853f09f3c8e756ef84a792c0452cf623a3eddaa62b32528398985ebe92b00a7e85e5d4d00ef97548270440e247cc2aa67c0b23c53cad1c192bb5389e2

  • SSDEEP

    3072:3AWi/g1IzuRb5xNAKY73zOyuj++0O8e8hk:3zi/+VCHuyuj++0O

Score
10/10
nowaredline

Malware Config

Extracted

Family

redline

Botnet

nowa

C2

77.91.124.49:19073

Attributes
  • auth_value

    6bc6b0617aa32bcd971aef4a2cf49647

Signatures

  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 3740-251-0x00000000007A0000-0x00000000007D0000-memory.dmp
    .exe windows x86


    Headers

    Sections