General
-
Target
1104-54-0x00000000002A0000-0x00000000002D0000-memory.dmp
-
Size
192KB
-
MD5
2af9d85d9cb88d0ee4693f7c5a0789fd
-
SHA1
f698104d9020a9c06aa039dc0a11e3283ad788a9
-
SHA256
93911da6de157ae618a6f765cf7fafb03529382a5889ea67cf09183efb7566b5
-
SHA512
c79af343d9756402cb1bdbfdfa26c1fadceadea8513499d433c1bd18ee89e4cc5f74ad06a86f970e0ec3a41bffe19792adbb9acaa1cee1558da852135d55c9ab
-
SSDEEP
3072:ltE62xyQ6d+VeXdxNLgVK880EHF8e8hK:vEmOA9S80EHF
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
andre
C2
77.91.124.49:19073
Attributes
-
auth_value
8e5522dc6bdb7e288797bc46c2687b12
Signatures
-
Redline family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
1104-54-0x00000000002A0000-0x00000000002D0000-memory.dmp
Headers
Sections