Overview

overview

10

Static

static

10

2548-38-0x...ry.exe

windows7-x64

1

2548-38-0x...ry.exe

windows10-2004-x64

5

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2548-38-0x0000000000230000-0x0000000000260000-memory.dmp

  • Size

    192KB

  • MD5

    3db0e9a026f2e309f6c2beec31dff32a

  • SHA1

    a8866cc556ef927e0a2b48d76f300b5a8df0dbc6

  • SHA256

    67a2ed1b0222da7c4ab75ad3a863136e9e832c860c88d9dae392ee1f7b3387bc

  • SHA512

    d8a9b471eafd088575fefbfeb195db89383e606d4392d158dc9fba4285bccac8542eceafc9b11a0d185c7513cbbfab34e0e84945782a93d3930c814ea05d8a6d

  • SSDEEP

    3072:8w2wJp8A/xdimI06X7vV6OPEsUc/W0E0ilHPgM1Jl8e8h3:87zAmmI0k7vVe0E0YIM1f

Score
10/10
lux3redline

Malware Config

Extracted

Family

redline

Botnet

lux3

C2

176.123.9.142:14845

Attributes
  • auth_value

    e94dff9a76da90d6b000642c4a52574b

Signatures

  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2548-38-0x0000000000230000-0x0000000000260000-memory.dmp
    .exe windows:4 windows x86


    Headers

    Sections