Overview

overview

10

Static

static

10

2708-20-0x...ry.exe

windows7-x64

1

2708-20-0x...ry.exe

windows10-2004-x64

5

Sharing

Copy URL Twitter E-mail

General

  • Target

    2708-20-0x0000000000230000-0x0000000000260000-memory.dmp

  • Size

    192KB

  • MD5

    3a44a4e418d6e2d7d827cc14df3c28a8

  • SHA1

    290f6f9b190b7cfdc9c8c863a271b21c1f319324

  • SHA256

    7c6881104ac67e56f988e9c8eab743c27b6d15dcfe4a94c914be7a75ba2cbea2

  • SHA512

    2a753a7ca29a3de2c76b3ba6a0fa16eee7ad5d341cb656c32a54d4d12d24156ac4dc7f340f6150f860d2047ecacc984729d3e15feda8b35ffc77e4b4bfc495ab

  • SSDEEP

    3072:8wbwJp8A/xdimI06X7vV6OPEsUc/W0E0ilHPgM1Jl8e8h3:8WzAmmI0k7vVe0E0YIM1f

Score
10/10
lux3redline

Malware Config

Extracted

Family

redline

Botnet

lux3

C2

176.123.9.142:14845

Attributes
  • auth_value

    e94dff9a76da90d6b000642c4a52574b

Signatures

  • RedLine payload 1 IoCs
  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2708-20-0x0000000000230000-0x0000000000260000-memory.dmp
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections