General
-
Target
1644-141-0x0000000000250000-0x0000000000280000-memory.dmp
-
Size
192KB
-
MD5
7847b31ac1c103a0852a353bc06c643a
-
SHA1
d91f1c8a2367005f11a46248a65f8449de417585
-
SHA256
355aa603039478f85fee01f32e3895320bf713351897ce163ef6e98a64c6bf6f
-
SHA512
86c02ff2970d711f6ea7a0d873f2dc074a14abcdfbe1f59ba98723d9f458b5e4bb042f4b414228a10c7a0b7f74bb3ae8504cd511fea99b8db544ebaa2af47fe9
-
SSDEEP
3072:2/tDiwyqSVghBGfAGtTjxNKifvWPxnD8e8hy:AibuhM5ZmnPxnD
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
rovno
C2
83.97.73.130:19061
Attributes
-
auth_value
88306b072bfae0d9e44ed86a222b439d
Signatures
-
Redline family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
1644-141-0x0000000000250000-0x0000000000280000-memory.dmp
Headers
Sections