Overview

overview

10

Static

static

10

1788-54-0x...ry.exe

windows7-x64

1

1788-54-0x...ry.exe

windows10-2004-x64

5

Sharing

Copy URL Twitter E-mail

General

  • Target

    1788-54-0x0000000000260000-0x0000000000290000-memory.dmp

  • Size

    192KB

  • MD5

    8060f1a845fd1a6e2b482ea40441518a

  • SHA1

    c6816d81896ed610e7fd646f4637b9a3c9ef2770

  • SHA256

    8d06670d57be99a99a24e0fc8ec0ee287ede3c89eca24872424876da7b88f025

  • SHA512

    c6aaaef317225bfad1583cc8d59ebfdb156c4dc3d062bd592fc515ebced096fa7a2ad16bb823d7667b65f8b0e2ee8beeac32e68fc360af21bebc0739210cd34f

  • SSDEEP

    1536:4buR0C10WqlVZRGWyuHrTog/XzMXMQ8ys88888888888888888888888g888888x:/R0feoog/ZpyqVEUCidWT8Fv8e8hQ

Score
10/10
lux3redline

Malware Config

Extracted

Family

redline

Botnet

lux3

C2

176.123.9.142:14845

Attributes
  • auth_value

    e94dff9a76da90d6b000642c4a52574b

Signatures

  • RedLine payload 1 IoCs
  • Redline family
    redline
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 1788-54-0x0000000000260000-0x0000000000290000-memory.dmp
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections