Overview

overview

10

Static

static

10

2840-116-0...ry.exe

windows7-x64

2840-116-0...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    2840-116-0x0000000000250000-0x0000000000280000-memory.dmp

  • Size

    192KB

  • MD5

    a046f6f10ef3ad1ffd31c5e7fcdaf9b5

  • SHA1

    06f5b891a9f2d89930fda3977bb5dd1bada2bb17

  • SHA256

    1da9248bcfc1f04a74ddb13a04e1c1093505d46e7bed2ab7585a554ae034a68e

  • SHA512

    17c194914042de72a9a1e9f203b338108314880a6fdd5e3e416d4b2f3b7a9b117f4b5f71e5f7931c290f4e94b6b8981d4030732974c8989d31296adb2025bf26

  • SSDEEP

    1536:AlBA36sv0W7T1sjvrHzbNSISuiiB0J57TNyQGxNXLYQLrbuLh8yrEHVF+0GkRS8U:ArqCnNsZWSZ5GxN8yi8yIHVF+B8e8hO

Score
10/10
masharedline

Malware Config

Extracted

Family

redline

Botnet

masha

C2

77.91.68.48:19071

Attributes
  • auth_value

    55b9b39a0dae383196a4b8d79e5bb805

Signatures

  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2840-116-0x0000000000250000-0x0000000000280000-memory.dmp
    .exe windows x86


    Headers

    Sections