General
-
Target
1768-97-0x0000000000250000-0x0000000000280000-memory.dmp
-
Size
192KB
-
MD5
93c7289950600d3580ac4aa611f0b274
-
SHA1
470ab13eb01c9ec22ca69a43e472a4bfa2e8129b
-
SHA256
c43fb360a9238a871d0d3150e96eb301e659985f11cace2a3dcebd9439d2902a
-
SHA512
6f8f38b09e7840181ea9c765db5a7bfbc7a2b3f3274ab4877cd1f5263d5a0e6118597b16ccdf2d04691f54c31d817676c3dcaefa0d2eea90cd92a53c5e53d2db
-
SSDEEP
3072:2UtDiwyqSVghBGfAGtTjxNKifvWPxnD8e8hy:/ibuhM5ZmnPxnD
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
rovno
C2
83.97.73.130:19061
Attributes
-
auth_value
88306b072bfae0d9e44ed86a222b439d
Signatures
-
Redline family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
1768-97-0x0000000000250000-0x0000000000280000-memory.dmp
Headers
Sections