Overview

overview

10

Static

static

10

2148-25-0x...ry.exe

windows7-x64

1

2148-25-0x...ry.exe

windows10-2004-x64

5

Sharing

Copy URL Twitter E-mail

General

  • Target

    2148-25-0x00000000003A0000-0x00000000003D0000-memory.dmp

  • Size

    192KB

  • MD5

    c097285ecccc96b5d92d3051974aadc6

  • SHA1

    28c6d83bd38f5d171becf1cc0110cacd6297849e

  • SHA256

    4739e129634165fcb3a27585622005791548bf1a32fad2437f39be8676b20066

  • SHA512

    f6286ec25f758c10279d11f10bb7ecfd4d18b45e3946393e5f8e30ca3d88fd3f700d2eabf31eea0013849b500d3a42172394053a371d05d126c21d40e15cb1f6

  • SSDEEP

    3072:8wBwJp8A/xdimI06X7vV6OPEsUc/W0E0ilHPgM1J68e8h3:8QzAmmI0k7vVe0E0YIM1M

Score
10/10
lux3redline

Malware Config

Extracted

Family

redline

Botnet

lux3

C2

176.123.9.142:14845

Attributes
  • auth_value

    e94dff9a76da90d6b000642c4a52574b

Signatures

  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2148-25-0x00000000003A0000-0x00000000003D0000-memory.dmp
    .exe windows:4 windows x86


    Headers

    Sections