Overview

overview

10

Static

static

10

4740-283-0...ry.exe

windows7-x64

4740-283-0...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    4740-283-0x0000000000490000-0x00000000004C0000-memory.dmp

  • Size

    192KB

  • MD5

    1b6de515695f878388e1314fcc9c0958

  • SHA1

    488e874cff5364884c68fd458ccd7f9f98ff728c

  • SHA256

    519175edeba0a4aca3208ae8760063ac52f5da85536df7e4bbaecac5d0c57005

  • SHA512

    7ef744369b9dd7047ea06fa6c4d4f0ca083aeff1838f6487003482f4dd72f0fbc197e56fd1d4ea29126266e8e099bdabac14d9dbda717aecc78fae4b95878260

  • SSDEEP

    3072:lAWi/g1IzuRb5xNAKY73zOyuj++0r8e8hk:lzi/+VCHuyuj++0r

Score
10/10
nowaredline

Malware Config

Extracted

Family

redline

Botnet

nowa

C2

77.91.124.49:19073

Attributes
  • auth_value

    6bc6b0617aa32bcd971aef4a2cf49647

Signatures

  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 4740-283-0x0000000000490000-0x00000000004C0000-memory.dmp
    .exe windows x86


    Headers

    Sections