Overview

overview

10

Static

static

10

2596-54-0x...ry.exe

windows7-x64

1

2596-54-0x...ry.exe

windows10-2004-x64

5

Sharing

Copy URL Twitter E-mail

General

  • Target

    2596-54-0x0000000000250000-0x0000000000280000-memory.dmp

  • Size

    192KB

  • MD5

    1fb2c73954c0a9ce644a9086337256dc

  • SHA1

    88b9492dfc30ab90abf34fcaaa1c2771a200928d

  • SHA256

    2d5ed4c779561771302ad00c0c307795994c8d9e2307d5f2ef9cda13963222ee

  • SHA512

    95fdd7a4f6e3541f09dc62b1d9958cdee29a7ff854f5263fab94509a9cadebcde3cb322e9c48c6424900fdc3c1b446f87ef5a8a309367c15959e781b8033695d

  • SSDEEP

    1536:0T2dx36sv0W7ToV/8rHRaFlZBjtHUjA0LrxNy7YQd1buwZJddXn0GkRL8e8hp:Ik/y0a7ZbUjLLrxNj6FDdXnI8e8hp

Score
10/10
@hukiluckyredline

Malware Config

Extracted

Family

redline

Botnet

@hukilucky

C2

vikaneleneer.shop:80

Attributes
  • auth_value

    eab4af0ade75678a373cfb861f349057

Signatures

  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2596-54-0x0000000000250000-0x0000000000280000-memory.dmp
    .exe windows x86


    Headers

    Sections