Overview

overview

10

Static

static

10

364-107-0x...ry.exe

windows7-x64

364-107-0x...ry.exe

windows10-2004-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    364-107-0x0000000000260000-0x0000000000290000-memory.dmp

  • Size

    192KB

  • MD5

    459bf95b7bdfb880da6d5e26ca6e8621

  • SHA1

    218eb7c8febb806d1d0866003f02722b5bc44ead

  • SHA256

    d072420dbaf4c082929f2f8b01aca94733d7de2e7d2b9ae181cf7c2e5be5f256

  • SHA512

    7980540feab1707e552991c462bdd64dc142a096a56099c254b11ce753e0fc98ec5d67f41a215cfc88e18f67427e46602d276a05b02f54ad27b3b23e4dc69e0e

  • SSDEEP

    3072:T7FcUMo+9XJIZYExNjGof40fz4l8e8hE:vFzoZLs3jz4l

Score
10/10
furgaredline

Malware Config

Extracted

Family

redline

Botnet

furga

C2

83.97.73.128:19071

Attributes
  • auth_value

    1b7af6db7a79a3475798fcf494818be7

Signatures

  • RedLine payload 1 IoCs
  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 364-107-0x0000000000260000-0x0000000000290000-memory.dmp
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections