General
-
Target
376-83-0x00000000002F0000-0x0000000000320000-memory.dmp
-
Size
192KB
-
MD5
d6bee953b355d23bbdfa01abe73eda6b
-
SHA1
6f04f586f3c4edf639d801cb3a389174ead469c3
-
SHA256
864db5c56e2c5aeb9916aeb4e19c69b8cb9847879113ef7c81a068880a0a72b3
-
SHA512
e6fb69bae2721de818130cfea86c1a2b0ca8118c9075ae1dc2a961ffd1410ae96d42f0fd642760e0085248afc7a0c4a71cfd98beff99e2509d578d60b71d8ba7
-
SSDEEP
1536:nhbEey6y36sv0W7TDGOIrHuyk7xk2W5/uGxNFVYQffbuclGHQ4N0GkRG8e8h3:nlEebE6Cyk9i5/uGxNMS3azNB8e8h3
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
bruno
C2
83.97.73.134:19071
Attributes
-
auth_value
b23e240c277e85ce9d49d6165c0a2b48
Signatures
-
Redline family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
376-83-0x00000000002F0000-0x0000000000320000-memory.dmp
Headers
Sections