Overview

overview

10

Static

static

10

2780-80-0x...ry.exe

windows7-x64

1

2780-80-0x...ry.exe

windows10-2004-x64

5

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2780-80-0x00000000002C0000-0x00000000002F0000-memory.dmp

  • Size

    192KB

  • MD5

    922c422c3f2cd0a0b5930e8b40a34098

  • SHA1

    9da3ff712c055f34991a936f97ca49a4c3208874

  • SHA256

    957134737a896adb4e1ba1ba296160948aa391583f0b677250770c0adf6f6cb5

  • SHA512

    da1133073013c3d774ff43455b29337842e087f099fb538fee1a352ef2e8a7e5cedc571829e013267f99925f21c90e1df582b9b669ad6c5c67d6421392d0f5c8

  • SSDEEP

    3072:8wqwJp8A/xdimI06X7vV6OPEsUc/W0E0ilHPgM1JQ8e8h3:8/zAmmI0k7vVe0E0YIM1u

Score
10/10
lux3redline

Malware Config

Extracted

Family

redline

Botnet

lux3

C2

176.123.9.142:14845

Attributes
  • auth_value

    e94dff9a76da90d6b000642c4a52574b

Signatures

  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2780-80-0x00000000002C0000-0x00000000002F0000-memory.dmp
    .exe windows x86


    Headers

    Sections