General
-
Target
1356-82-0x0000000000400000-0x0000000000426000-memory.dmp
-
Size
152KB
-
MD5
c622d47d51c641c30ab55af6c1838eca
-
SHA1
65c35a69b5ff64f43ac9b16bc434776023f09d66
-
SHA256
3a21feb5553a152a6861d8a33ab5f564e84394cdef6fd9773c2e2c9b42b40ddb
-
SHA512
40b6cc9e06713c8ed7b3cbb36312dedff01bc1b6dd7a2e26acf6522b4a6b63331743e5b3b69da82b04a73da4d08a1e8c79aebd93a16a87f02fe6078301f1b93e
-
SSDEEP
1536:AahcnVHT1e/ofspSm+fqpSmQ8lIbN+Bkk3hPjzLbV7PCOhI:VhcZZU6ipS38kSR/3ZD
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
200623_11_DMG
C2
157.230.35.119:81
Attributes
-
auth_value
b0c6531fef86d2b7efc2fe679e85897e
Signatures
-
Redline family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
1356-82-0x0000000000400000-0x0000000000426000-memory.dmp
Headers
Sections