General
-
Target
1624-83-0x0000000000340000-0x0000000000370000-memory.dmp
-
Size
192KB
-
MD5
a58dafd2a3e150acce1232155d5c568c
-
SHA1
2de1220f511cf3df5f4651db19a3d2f58962632b
-
SHA256
6ccf744be81c954c3a151b04030dc418ad086a2437cb17a3df26959d9aeca88c
-
SHA512
a52d5c98f16d437d6b543d7cb1e676d5a6e85586760d819764bf7ca0f0140f4b572a11cf0bd73b11e8a672747412cb256ad5b0f5c60b3222718fc20a5f34c5d5
-
SSDEEP
3072:itE62xyQ6d+VeXdxNLgVK880EHr8e8hK:OEmOA9S80EHr
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
andre
C2
77.91.124.49:19073
Attributes
-
auth_value
8e5522dc6bdb7e288797bc46c2687b12
Signatures
-
Redline family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
1624-83-0x0000000000340000-0x0000000000370000-memory.dmp
Headers
Sections