Overview

overview

10

Static

static

10

1724-54-0x...ry.exe

windows7-x64

1

1724-54-0x...ry.exe

windows10-2004-x64

5

Sharing

Copy URL Twitter E-mail

General

  • Target

    1724-54-0x00000000002A0000-0x00000000002D0000-memory.dmp

  • Size

    192KB

  • MD5

    bcb3fbef9859bd7076c687322d77180d

  • SHA1

    d884d2cf44d4a42b4fd744d022d315192275a9c8

  • SHA256

    82c14d2122bb9114bdad38990e2e16de95190be9b57c10a73c86d0eb95f2111b

  • SHA512

    31a7e6433a6166e8708c478ec70c38696b566afb7d3ad08cc96ce6377871c42c5dce6dee4ec348fa4ef4962f35dbc35d363680a04e2f9554ee262d3c98af9c5f

  • SSDEEP

    1536:xbuR0C10WqlVZRGWyuHrTog/XzMXMQ8ys88888888888888888888888g888888d:IR0feoog/ZpyqVEUCidWT8Fr8e8hQ

Score
10/10
lux3redline

Malware Config

Extracted

Family

redline

Botnet

lux3

C2

176.123.9.142:14845

Attributes
  • auth_value

    e94dff9a76da90d6b000642c4a52574b

Signatures

  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 1724-54-0x00000000002A0000-0x00000000002D0000-memory.dmp
    .exe windows x86


    Headers

    Sections