Overview

overview

10

Static

static

10

2748-36-0x...ry.exe

windows7-x64

1

2748-36-0x...ry.exe

windows10-2004-x64

5

Sharing

Copy URL Twitter E-mail

General

  • Target

    2748-36-0x00000000001C0000-0x00000000001F0000-memory.dmp

  • Size

    192KB

  • MD5

    c2268a3201eadcc34a2d0b6057bf85f7

  • SHA1

    8be5bc7bd4dc92036d615bc63fd89f7791fa0d56

  • SHA256

    314a4099525f24b8392ef4c99fb05be4070ffd4212b5495c16e8b4c5f323d90c

  • SHA512

    43544a9c56c2ead1800c8eabe476f35ca54e4ec4a0cd6a7b2c984e6533bc83419a4309d2d11e1532121c1fe22f2ccf4f2572348b703ac38686da055eaa8f2761

  • SSDEEP

    3072:8wMwJp8A/xdimI06X7vV6OPEsUc/W0E0ilHPgM1JA8e8h3:89zAmmI0k7vVe0E0YIM1e

Score
10/10
lux3redline

Malware Config

Extracted

Family

redline

Botnet

lux3

C2

176.123.9.142:14845

Attributes
  • auth_value

    e94dff9a76da90d6b000642c4a52574b

Signatures

  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2748-36-0x00000000001C0000-0x00000000001F0000-memory.dmp
    .exe windows x86


    Headers

    Sections