General
-
Target
1524-55-0x0000000000400000-0x0000000000430000-memory.dmp
-
Size
192KB
-
MD5
b12543add76b5690b7a9831d6c494b93
-
SHA1
2d8ac99d43df5a9b33b982b397fc9c619cccb547
-
SHA256
0369f3e1b178cabfe437ab217f044828710cc05608f66e891b141433001c53d1
-
SHA512
499c0d781d6c6f23f22a358a15646ddab23a1f27b0aab79b154ca4fc00ec69fb2e84623c93be342eac38f680e27094abb2b3467f0ae7456586c5232d1ce3d754
-
SSDEEP
3072:YttknTzsk2+kLXmZEJTEHDxN8aYHvDIgLrIL78e8hS:MYpH4pDIgLrIL7
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
0506
C2
176.123.9.142:14845
Attributes
-
auth_value
b9eb61b0dc69fe221ee04711a951d730
Signatures
-
Redline family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
1524-55-0x0000000000400000-0x0000000000430000-memory.dmp
Headers
Sections