General
-
Target
860-132-0x0000000000090000-0x00000000000BE000-memory.dmp
-
Size
184KB
-
MD5
d74d09e164006728d4e96d77df4392b8
-
SHA1
63346f26d36edb7e4c659d46119613fd17eeabc7
-
SHA256
90803302c4610e6621c3874421597a3d7cf3605fc7eeeaf359ff88b4cd851ccb
-
SHA512
819f072339638ab5dd4aae54166889ef5d3b5d4e3a1e8e08941d23b57489e0d93e9132ea9d4514264a14723276b1df275f4b06c7b8898eea9b1d7860858748ed
-
SSDEEP
1536:mTXbeqhVZCGW+WEVPhq8Wg8fnv5RCNTGqVYFWbuME0aQ5ZDr/e84wYkP8e8hH:iLXWb8WgMv75qVYsKaZDr/ee8e8hH
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
metro
C2
83.97.73.126:19046
Attributes
-
auth_value
f7fd4aa816bdbaad933b45b51d9b6b1a
Signatures
-
Redline family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
860-132-0x0000000000090000-0x00000000000BE000-memory.dmp
Headers
Sections