Overview

overview

10

Static

static

10

1548-205-0...ry.exe

windows7-x64

1

1548-205-0...ry.exe

windows10-2004-x64

5

Sharing

Copy URL Twitter E-mail

General

  • Target

    1548-205-0x0000000000250000-0x0000000000280000-memory.dmp

  • Size

    192KB

  • MD5

    f418d297d517c2496bb6b55dbe9249e0

  • SHA1

    762164268dca0102c5ed7137f21dc417dafac3d0

  • SHA256

    7728a568171bcc8c65f283fdaa98a5feff3d3a8d2f5385ecf911f49af853a1f2

  • SHA512

    a4376b188a31d51f80757265697e2fe15b56c9757624a261ff0ee02143afa6e3fbe0704951f5a3a4c63515dd13e3b54faf1e40885f06e72473e3a4ced54dd1fe

  • SSDEEP

    3072:8w4wJp8A/xdimI06X7vV6OPEsUc/W0E0ilHPgM1JD8e8h3:85zAmmI0k7vVe0E0YIM1p

Score
10/10
lux3redline

Malware Config

Extracted

Family

redline

Botnet

lux3

C2

176.123.9.142:14845

Attributes
  • auth_value

    e94dff9a76da90d6b000642c4a52574b

Signatures

  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 1548-205-0x0000000000250000-0x0000000000280000-memory.dmp
    .exe windows x86


    Headers

    Sections