General
-
Target
1488-283-0x0000000000560000-0x0000000000590000-memory.dmp
-
Size
192KB
-
MD5
d52a05f1b7e034e8d6d6866d5af04487
-
SHA1
7c514626d2d9369543d97ff6013a627eb3ca5333
-
SHA256
b8929cd4ddee67cf3476d485b9cbfd0f9b78eac8a8d137250abd4dc4d38868da
-
SHA512
f8a8b63291371e29ce4cb3ef608fe9bdacb985c7c7b7c0031eea0795a5d1ba8fd5fcb5656c8e22efcf70511071f364576339652e37f50f7c514bf650b6998ba2
-
SSDEEP
1536:RhbEey6y36sv0W7TDGOIrHuyk7xk2W5/uGxNFVYQffbuclGHQ4N0GkRR8e8h3:RlEebE6Cyk9i5/uGxNMS3azNW8e8h3
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
bruno
C2
83.97.73.134:19071
Attributes
-
auth_value
b23e240c277e85ce9d49d6165c0a2b48
Signatures
-
Redline family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
1488-283-0x0000000000560000-0x0000000000590000-memory.dmp
Headers
Sections