Overview

overview

10

Static

static

10

2976-35-0x...ry.exe

windows7-x64

1

2976-35-0x...ry.exe

windows10-2004-x64

5

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2976-35-0x0000000000290000-0x00000000002C0000-memory.dmp

  • Size

    192KB

  • MD5

    0956c97f0813b377292b2d1123bcc813

  • SHA1

    1b3c039fb09b7c66f7337090cdc614d965713026

  • SHA256

    34617a9fd03fcf0f1eba9fdfcb04bfe65f83a00cc0d0b4ffaf423826e7ca5c7b

  • SHA512

    a3db90122161b3876df7428d3789736af9054ab6a3a39cf393dbf47f252927f42e95d20ea24c056c613b9120b364b26b82146a260270eb5e45e90ceb33aa49b0

  • SSDEEP

    3072:8wZwJp8A/xdimI06X7vV6OPEsUc/W0E0ilHPgM1JX8e8h3:8YzAmmI0k7vVe0E0YIM19

Score
10/10
lux3redline

Malware Config

Extracted

Family

redline

Botnet

lux3

C2

176.123.9.142:14845

Attributes
  • auth_value

    e94dff9a76da90d6b000642c4a52574b

Signatures

  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2976-35-0x0000000000290000-0x00000000002C0000-memory.dmp
    .exe windows:4 windows x86


    Headers

    Sections