General
-
Target
492-256-0x0000000000490000-0x00000000004C0000-memory.dmp
-
Size
192KB
-
MD5
51883587516e5b40e01b0dde33644a03
-
SHA1
f03ab9a0e7700f192969f65332c71853bce0d263
-
SHA256
5940a1349643c21168daa2741e1f261036907f889edff4f9cd802fc2980402a8
-
SHA512
1e0a23b854d2fa1c50499723d7597e060e08fbd802d727ed20b7aebc4e6626324c7d920a4a045ffe58956a6f9eb4e160adf913e3a23a0d732065c7c83f20bb23
-
SSDEEP
3072:stE62xyQ6d+VeXdxNLgVK880EHk8e8hK:0EmOA9S80EHk
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
andre
C2
77.91.124.49:19073
Attributes
-
auth_value
8e5522dc6bdb7e288797bc46c2687b12
Signatures
-
Redline family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
492-256-0x0000000000490000-0x00000000004C0000-memory.dmp
Headers
Sections