General
-
Target
1792-221-0x0000000000090000-0x00000000000C0000-memory.dmp
-
Size
192KB
-
MD5
18cf7fffa4de75dbc27a3623a1aa681b
-
SHA1
9d8337321952418791d830af9623e58812401e60
-
SHA256
725fd788c8d1e01d8fec7d3fe8c5d652a6b5489c3b2ae20086fcc4debe7d8256
-
SHA512
a48bcac40b5701a6d3a14ed6c62fe4be915ddecd4e4d3b8cda5741e8a581fc1ec2a08058cf8c494546fddc9957520bd1d04f86e28ba283ac63104ad235ed176b
-
SSDEEP
3072:d+CgncfnivAgLNbcxNdydiyM4ROkmr8e8hx:dv5hsKmM4ROkmr
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
sheron
C2
83.97.73.129:19068
Attributes
-
auth_value
2d067e7e2372227d3a03b335260112e9
Signatures
-
Redline family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
1792-221-0x0000000000090000-0x00000000000C0000-memory.dmp
Headers
Sections