General
-
Target
472-83-0x00000000002D0000-0x0000000000300000-memory.dmp
-
Size
192KB
-
MD5
13aeda2fae18cab42968c03876e284f6
-
SHA1
f9420386bc46448cc284bb6d1e10d8cc970e9159
-
SHA256
9cf890400af47d79166341acf40c4d39f3dc8ac56c3094265aa647008ec29a85
-
SHA512
c4bece6999fd3e7cc13e364c2ab85da085c966b2e395d815f5810ef79ff83da55a40234c27ea6bef34a849b2bb83e307d37a15df90c3e2d9b7017333a2b1e127
-
SSDEEP
3072:otE62xyQ6d+VeXdxNLgVK880EHY8e8hK:4EmOA9S80EHY
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
andre
C2
77.91.124.49:19073
Attributes
-
auth_value
8e5522dc6bdb7e288797bc46c2687b12
Signatures
-
Redline family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
472-83-0x00000000002D0000-0x0000000000300000-memory.dmp
Headers
Sections