General
-
Target
4980-272-0x0000000000450000-0x0000000000480000-memory.dmp
-
Size
192KB
-
MD5
db8cc722b9010992d04f63fbe1f386df
-
SHA1
d872e21c97fb55663ff95d0ecb235b5606fdfddc
-
SHA256
c26abc957ce3a46fde4177d346a79c70f608a5feaf0da91055ef74a37d2fda1d
-
SHA512
b37db19de6dfd76fc5df287f010797a6c873e842372e3fc9927e5141f0348b5b5ea5401ec0368d135ec3b76c249dc030e60939e4084afdc31e08246422dc1ff4
-
SSDEEP
3072:7isCziRmKPvwL/2rSlllF+HxN6AtjJXOP8e8hB:7iHqXwaWlllF+CMXOP
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
smoke
C2
83.97.73.131:19071
Attributes
-
auth_value
aaa47198b84c95fcce9397339e8af9d4
Signatures
-
Redline family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
4980-272-0x0000000000450000-0x0000000000480000-memory.dmp
Headers
Sections