General
-
Target
1420-83-0x00000000008C0000-0x00000000008F0000-memory.dmp
-
Size
192KB
-
MD5
824d82baae3ad1e62012492eaac2084b
-
SHA1
f27ecbc3e976a3f0194aaba27035c72132bc689c
-
SHA256
c17d996b8de69541556657d2dd67e666c10f35ed338f628e107a518d44e1ebec
-
SHA512
c28e833579d2f058f61b3eeb274b0598bd9cb33827a8e3429090739cc2185bdf36a76e0a85246c4a1c0034dee6462e46985df6c14aa5574627c92cee383809c1
-
SSDEEP
3072:OtE62xyQ6d+VeXdxNLgVK880EHj8e8hK:iEmOA9S80EHj
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
andre
C2
77.91.124.49:19073
Attributes
-
auth_value
8e5522dc6bdb7e288797bc46c2687b12
Signatures
-
Redline family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
1420-83-0x00000000008C0000-0x00000000008F0000-memory.dmp
Headers
Sections