Overview

overview

10

Static

static

10

1940-24-0x...ry.exe

windows7-x64

1

1940-24-0x...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    1940-24-0x0000000000220000-0x0000000000250000-memory.dmp

  • Size

    192KB

  • MD5

    d0d1a8bfdc6278926815a9bd81a1d348

  • SHA1

    f9b01e817a4d3a20705357ceb451a35805334f90

  • SHA256

    dcd960323fa4dfe934fea7b7603b08ae1db4fc3bf08265cbd5d1b97c77a7e932

  • SHA512

    9ebc07ccfd36e2f1c360907d905367055c3dd7f160b5e093763522d9e190fda62ff200cb859ae53b96d34bbea598ba9b2272eb445e4c49e718e4bea4bfa212f4

  • SSDEEP

    3072:8w0wJp8A/xdimI06X7vV6OPEsUc/W0E0ilHPgM1JS8e8h3:8VzAmmI0k7vVe0E0YIM1k

Score
10/10
lux3redline

Malware Config

Extracted

Family

redline

Botnet

lux3

C2

176.123.9.142:14845

Attributes
  • auth_value

    e94dff9a76da90d6b000642c4a52574b

Signatures

  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 1940-24-0x0000000000220000-0x0000000000250000-memory.dmp
    .exe windows:4 windows x86


    Headers

    Sections