Overview

overview

10

Static

static

10

2960-97-0x...ry.exe

windows7-x64

2960-97-0x...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    2960-97-0x0000000000270000-0x00000000002A0000-memory.dmp

  • Size

    192KB

  • MD5

    993bdd49d253fb954d3bf10a02051284

  • SHA1

    e30ad1754d28c49f5396782cecb3626a06a58947

  • SHA256

    ca359c592c6b7e3671ef5e897a59119ded8851feba46d18308cd785dbd208487

  • SHA512

    c8a43ca6d8324c0f8230d18eadb820c735d1354aee87aaf7f484cf7112166258c2a42747addf66ae6fb44c61a0b75881d2662bff7a7d33bf3d5244fe6ce6b78e

  • SSDEEP

    1536:UDrRuq1Ps36sv0W7TRVOQM6fwrHwhn/rQbg5fb25LxNcqYQHnbuxaNLQmpTu0Gk9:88sO/O2DnEba0LxNEyPNcmpTuD8e8hT

Score
10/10
kiraredline

Malware Config

Extracted

Family

redline

Botnet

kira

C2

77.91.68.48:19071

Attributes
  • auth_value

    1677a40fd8997eb89377e1681911e9c6

Signatures

  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2960-97-0x0000000000270000-0x00000000002A0000-memory.dmp
    .exe windows x86


    Headers

    Sections