General
-
Target
3608-271-0x0000000000560000-0x0000000000590000-memory.dmp
-
Size
192KB
-
MD5
88506f1d06585836cc56b5ed487e657d
-
SHA1
04d43fd4b12ac21c51961d9ad6a8ae2dc216a955
-
SHA256
f685515bd73bd73fb91eb67c979ca2bc49567f478ae6d96268d565ba33d7ca02
-
SHA512
92cf4fd3ee0e75c4470e3e6a4cca07fca52c7e4b7d984a085060cf7a4c8b963248109c5d4e150e87ee281296c62949cc52f5487787120f43e1a73c73b67a8248
-
SSDEEP
3072:CtE62xyQ6d+VeXdxNLgVK880EHR8e8hK:uEmOA9S80EHR
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
andre
C2
77.91.124.49:19073
Attributes
-
auth_value
8e5522dc6bdb7e288797bc46c2687b12
Signatures
-
Redline family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
3608-271-0x0000000000560000-0x0000000000590000-memory.dmp
Headers
Sections