Overview

overview

10

Static

static

10

2520-35-0x...ry.exe

windows7-x64

1

2520-35-0x...ry.exe

windows10-2004-x64

5

Sharing

Copy URL Twitter E-mail

General

  • Target

    2520-35-0x00000000001C0000-0x00000000001F0000-memory.dmp

  • Size

    192KB

  • MD5

    010bdd3505c88a9221490e44c217453f

  • SHA1

    86f594cf68f83db46ec9b0ee41bcf399080044ea

  • SHA256

    1ea179848b260e797967ca472943220521b76f08ec49cabeb6b32a3538ca41f1

  • SHA512

    57e59e65ab56e4130a5e3c1b6a1e2047ab6fc53e48e1905a0894f9cb6d2388bcc604be61c349a4110d2bb3d5df787ecfad48ef4125845471572b524a16123609

  • SSDEEP

    3072:8wHwJp8A/xdimI06X7vV6OPEsUc/W0E0ilHPgM1JA8e8h3:8CzAmmI0k7vVe0E0YIM1e

Score
10/10
lux3redline

Malware Config

Extracted

Family

redline

Botnet

lux3

C2

176.123.9.142:14845

Attributes
  • auth_value

    e94dff9a76da90d6b000642c4a52574b

Signatures

  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2520-35-0x00000000001C0000-0x00000000001F0000-memory.dmp
    .exe windows:4 windows x86


    Headers

    Sections