General

  • Target

    580-64-0x0000000000400000-0x0000000000430000-memory.dmp

  • Size

    192KB

  • MD5

    336b0fd16a8cddb15a67fe944eee91e2

  • SHA1

    cc714f8fac8f68fcce3585a4c27ac38672f2fa85

  • SHA256

    3a0e2b4bd2495d64b63c5a9dbdc700ed2033fdcc0449a9c69509c8a2de1be460

  • SHA512

    8a9226e59047f043f9c04a5c47eb753900571d4369633d3ceb16dacd42c62f55c172a45e152561aec3580cc61c75f7ebcaa274b11c277abb148950dcbbf84f30

  • SSDEEP

    3072:5qaLm74qpXtmOnJjBawT253uaxfKfVvXgDOL3DNpPL0F0JCb3O3Cb3hNwNIEcC8Q:Tsf7ptSaGh

Score
10/10

Malware Config

Extracted

Family

redline

C2

lunovim957.duckdns.org:8641

Attributes
  • auth_value

    435936f79d4bd0cb27b4d87d5223a272

Signatures

Files

  • 580-64-0x0000000000400000-0x0000000000430000-memory.dmp
    .exe windows x86


    Headers

    Sections