General
-
Target
672-83-0x0000000000340000-0x0000000000370000-memory.dmp
-
Size
192KB
-
MD5
d1281532bdca1cdf3143d55829a7af0d
-
SHA1
5cce7b0f4633abbb8ec1efb419c6f559a04ecfe4
-
SHA256
78fe08ab0f6f76eaa086855f686ae549f5859864e07e0b254e37a1dfc19c4e16
-
SHA512
fbbbdac8da879823f09a1f9a907ff1705746ac3ffc9c32ab0e122c3ab3899af3d1d8903d48786c2c619d9375667378ca0e6e7a578ccce5fa50e0c7de3dbff4ef
-
SSDEEP
1536:AhbEey6y36sv0W7TDGOIrHuyk7xk2W5/uGxNFVYQffbuclGHQ4N0GkR78e8h3:AlEebE6Cyk9i5/uGxNMS3azN48e8h3
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
bruno
C2
83.97.73.134:19071
Attributes
-
auth_value
b23e240c277e85ce9d49d6165c0a2b48
Signatures
-
Redline family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
672-83-0x0000000000340000-0x0000000000370000-memory.dmp
Headers
Sections