General

  • Target

    2172-190-0x0000000000520000-0x0000000000550000-memory.dmp

  • Size

    192KB

  • MD5

    f2f5a22e4030e591fc747794c0754bca

  • SHA1

    bc25f4b2b69118eddceab3375b583c326b7c17ff

  • SHA256

    e434c365d57eb0938a23fbe88a59389a1104603e2e3eb948f92849b77399ce12

  • SHA512

    6c5b3996147c37d65b83065f327d0996b514f11f7511923db0a3c6efe42a5eea8a8750e88455db8e59d5b4e2882591a14574fc8ee38d8e3d3c597e2a109cbc07

  • SSDEEP

    3072:rWYcGwly5Ci0oxNnGSbEUu/ggOy8e8hD:rGWB00ZqggOy

Score
10/10

Malware Config

Extracted

Family

redline

Botnet

grega

C2

83.97.73.130:19061

Attributes
  • auth_value

    16e2fbc2847b2270b3f0679e2dd76c8d

Signatures

  • Redline family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2172-190-0x0000000000520000-0x0000000000550000-memory.dmp
    .exe windows x86


    Headers

    Sections