General
-
Target
1868-123-0x0000000000350000-0x0000000000380000-memory.dmp
-
Size
192KB
-
MD5
329b2c7fde0331ea92ad0a699e842d84
-
SHA1
f8b71f0c608e1c50e5d3486c78c6d8826cd47b84
-
SHA256
a7416fb6390a1f00dd74d3eef5e93b608a137ba54c0965826c518ff4ce036e69
-
SHA512
3f5d467f4a81507102f47eeb2f647b623acc2903d06497b4e1a68204e50d327d7a6386b3237ad8dad1b88af1c4c1f1cf89750720e4fc87323aa5fc11c3fc6f9c
-
SSDEEP
3072:8UUEa9Te3JQBf8td3/oxN1ULH0tyc8e8h4:P7QRyi1tyc
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
mucha
C2
83.97.73.131:19071
Attributes
-
auth_value
5d76e123341992ecf110010eb89456f0
Signatures
-
Redline family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
1868-123-0x0000000000350000-0x0000000000380000-memory.dmp
Headers
Sections