General
-
Target
436-123-0x00000000002C0000-0x00000000002F0000-memory.dmp
-
Size
192KB
-
MD5
efc7264f122e4cd3051ee37f08673eed
-
SHA1
a2203b8052f62a87cf9a72f8f55e01e5a1cc37f2
-
SHA256
0cb66e9b2c0b45ac00c442aa99a7cc3c66723584eda219ba7c5df26682d42f44
-
SHA512
2d3d2e1015794874f973f3d6d2ad3b1f5c5be1688d267d3864591ee2ef216018ee1fd2986beb32702419cdd79927ec14efdc4bd3e4c65e1caa605a6c7d4813ae
-
SSDEEP
3072:aUUEa9Te3JQBf8td3/oxN1ULH0tyP8e8h4:x7QRyi1tyP
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
mucha
C2
83.97.73.131:19071
Attributes
-
auth_value
5d76e123341992ecf110010eb89456f0
Signatures
-
Redline family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
436-123-0x00000000002C0000-0x00000000002F0000-memory.dmp
Headers
Sections