General
-
Target
872-141-0x00000000001F0000-0x0000000000220000-memory.dmp
-
Size
192KB
-
MD5
db021bd93b4302a0d1c292ebe1a537a7
-
SHA1
48866dc31bcfbe2e556c14683dea300fa7c73624
-
SHA256
a28d3b8ff47425e560a9458878978b8ec76862a24bfa61208857ea38d1050102
-
SHA512
3ca1c6624ee1b7be25a93278ff9f0d2a51e2cd536a56319988c0af6e2386c165164f10998a0fa183745a224e17c180cde726a2137885db82f2c92e0337d47034
-
SSDEEP
3072:23tDiwyqSVghBGfAGtTjxNKifvWPxnh8e8hy:gibuhM5ZmnPxnh
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
rovno
C2
83.97.73.130:19061
Attributes
-
auth_value
88306b072bfae0d9e44ed86a222b439d
Signatures
-
Redline family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
872-141-0x00000000001F0000-0x0000000000220000-memory.dmp
Headers
Sections