Overview

overview

10

Static

static

10

2844-29-0x...ry.exe

windows7-x64

1

2844-29-0x...ry.exe

windows10-2004-x64

5

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2844-29-0x00000000001C0000-0x00000000001F0000-memory.dmp

  • Size

    192KB

  • MD5

    9b5faf7eea93bb3f89fa96718b6e33c9

  • SHA1

    b0b9965859d6ef5b8bc52c14f3b57c1a0e6771b1

  • SHA256

    3f53582bf9248745f29419cd644061a184d1199178eba5ca2bcf6d02e92931ea

  • SHA512

    385dd273b17c63a9e744c2537686d9ca9d9fbdad002585a6a1282b2ce515a35b63119b1b627341513d01ede19a07ad05f836d0a798a89e10931dbf822e08b8ae

  • SSDEEP

    3072:8w+wJp8A/xdimI06X7vV6OPEsUc/W0E0ilHPgM1JA8e8h3:8fzAmmI0k7vVe0E0YIM1e

Score
10/10
lux3redline

Malware Config

Extracted

Family

redline

Botnet

lux3

C2

176.123.9.142:14845

Attributes
  • auth_value

    e94dff9a76da90d6b000642c4a52574b

Signatures

  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2844-29-0x00000000001C0000-0x00000000001F0000-memory.dmp
    .exe windows:4 windows x86


    Headers

    Sections