General
-
Target
4848-196-0x0000000000150000-0x000000000017A000-memory.dmp
-
Size
168KB
-
MD5
93b0eb14c26ea26b1a514173868be140
-
SHA1
c286b95ee52ce9a91e614f6aab19bf0dc0764fa3
-
SHA256
a7a032271ef49e6ffd1ed874598a94b66784947cc19070e30e2e12be90a0327a
-
SHA512
4ea3adcfe1e70684063bd306be6e90bef296bd2bed7c80975afffe13d5f4f1abdd783ab3a3fb0f218beb78550f96a55ad914714c3d954991d536a3915e86ac5e
-
SSDEEP
3072:6V+m5clQmRSRT76SKyyw4x6rIUh+Zt8e8hK:6joMUyyHUh+j
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
munder
C2
83.97.73.127:19062
Attributes
-
auth_value
159bf350f6393f0d879c80a22059fba2
Signatures
-
Redline family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
4848-196-0x0000000000150000-0x000000000017A000-memory.dmp
Headers
Sections