General
-
Target
860-58-0x0000000000400000-0x000000000042E000-memory.dmp
-
Size
184KB
-
MD5
20b4ea2eac0f04cb54b65f3c73d9a597
-
SHA1
c261e1142275fa57c4dc5d816a55a3daee418178
-
SHA256
cae3a7da71fd8f1c6996558574ff177a7fae33e5a2d6e53931b7d2f8434c0456
-
SHA512
9266c5b03163c7446e5015c599cf19c56408a5886d52cb0b549bb2010247687b487fd5f3c5ceefef43e78d67519abdf5d9d58b45dd47d8f1ad4de31074951782
-
SSDEEP
1536:d1Ee/wXAqhVZCGWV543Pdz8WkrYU9sMx1cgjhWwTGqVmhWbuINyTjLNpFdri84wj:oeIXm88WkP3P6qVmAMTjnFdO
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
cryptx
C2
94.142.138.105:15111
Attributes
-
auth_value
a45302b7daf4f87798af144567e5d0ff
Signatures
-
Redline family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
860-58-0x0000000000400000-0x000000000042E000-memory.dmp
Headers
Sections