Overview

overview

10

Static

static

10

3584-37-0x...ry.exe

windows7-x64

1

3584-37-0x...ry.exe

windows10-2004-x64

5

Sharing

Copy URL Twitter E-mail

General

  • Target

    3584-37-0x00000000001C0000-0x00000000001F0000-memory.dmp

  • Size

    192KB

  • MD5

    474c5773902bcbccd443685420f96be1

  • SHA1

    804e5af1e7a5b17777a6ded339fd0ae72f969266

  • SHA256

    d5d2cb2c83cdbdc1d8fd256ed9b84ea4c2429c12c9288c0660bf9a591d262303

  • SHA512

    b787704185e6e9c6de81818665ca5bd1ff88141467d78a06e08f4a1780a01faffcb10a373678dab835e4089107a626f7f2cd1b79919a350f90b8531628638611

  • SSDEEP

    3072:8wQwJp8A/xdimI06X7vV6OPEsUc/W0E0ilHPgM1JA8e8h3:8VzAmmI0k7vVe0E0YIM1e

Score
10/10
lux3redline

Malware Config

Extracted

Family

redline

Botnet

lux3

C2

176.123.9.142:14845

Attributes
  • auth_value

    e94dff9a76da90d6b000642c4a52574b

Signatures

  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 3584-37-0x00000000001C0000-0x00000000001F0000-memory.dmp
    .exe windows x86


    Headers

    Sections