Overview

overview

10

Static

static

10

2660-24-0x...ry.exe

windows7-x64

1

2660-24-0x...ry.exe

windows10-2004-x64

5

Sharing

Copy URL Twitter E-mail

General

  • Target

    2660-24-0x0000000000440000-0x0000000000470000-memory.dmp

  • Size

    192KB

  • MD5

    0c2f190b9369149c287f3f5288256ddd

  • SHA1

    edcc5354de9c5626a0c504e5ca018e6d5a481054

  • SHA256

    e8a84bd8097a6125e39e1267a60b0fe6e9ff84865a4644ae6c6daaea0be5e599

  • SHA512

    24a558798945fdd50c9ebef52b0e292ce33b50ef2307c5c2652eed46fb68e665801255d8ea4e6ed2f2dc72baf0d08c7a9cc7ad96f593e6d645a99fc1fa470d62

  • SSDEEP

    3072:8wRwJp8A/xdimI06X7vV6OPEsUc/W0E0ilHPgM1JY8e8h3:8AzAmmI0k7vVe0E0YIM12

Score
10/10
lux3redline

Malware Config

Extracted

Family

redline

Botnet

lux3

C2

176.123.9.142:14845

Attributes
  • auth_value

    e94dff9a76da90d6b000642c4a52574b

Signatures

  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2660-24-0x0000000000440000-0x0000000000470000-memory.dmp
    .exe windows x86


    Headers

    Sections