General
-
Target
1204-97-0x0000000000250000-0x0000000000280000-memory.dmp
-
Size
192KB
-
MD5
14e17c0891ec9b93226ef296f5c2931b
-
SHA1
29ce562bc54bce160b0a176b226951bab1e3837c
-
SHA256
4e84b64321d88f2cfcf16df4ef5483ddcaf80083d60223abe318f8393eb7d2fc
-
SHA512
eba36846af8d74fe4f645e395713e46a7c665390c1e587b8fc5d995650ede2a720fec0e1bdcfc035d285957c459a4c575db97a2ee3e4a0e21eccf8b1b33fe586
-
SSDEEP
3072:2etDiwyqSVghBGfAGtTjxNKifvWPxnD8e8hy:hibuhM5ZmnPxnD
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
rovno
C2
83.97.73.130:19061
Attributes
-
auth_value
88306b072bfae0d9e44ed86a222b439d
Signatures
-
Redline family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
1204-97-0x0000000000250000-0x0000000000280000-memory.dmp
Headers
Sections