General
-
Target
4392-253-0x0000000001E50000-0x0000000001E80000-memory.dmp
-
Size
192KB
-
MD5
7a5040b4f74dcf6ad0c74a03f6865be5
-
SHA1
828cc9878fc4532ddbe97ff534c7e58ff1da0837
-
SHA256
051bb09abdeb3c2f5c846e591e0ece86be00ea35859e0589c5e97ccf4a24d708
-
SHA512
b76b5f254857d6652cbdae584974141e401364e6b059a4067f97f7e4ca06a6f9303ca4772824a9d55cd9267c39ce76b66c471ad13114180101d268c9b6fd8d74
-
SSDEEP
1536:ehbEey6y36sv0W7TDGOIrHuyk7xk2W5/uGxNFVYQffbuclGHQ4N0GkRt8e8h3:elEebE6Cyk9i5/uGxNMS3azNu8e8h3
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
bruno
C2
83.97.73.134:19071
Attributes
-
auth_value
b23e240c277e85ce9d49d6165c0a2b48
Signatures
-
Redline family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
4392-253-0x0000000001E50000-0x0000000001E80000-memory.dmp
Headers
Sections