General
-
Target
1328-97-0x00000000003D0000-0x0000000000400000-memory.dmp
-
Size
192KB
-
MD5
96bd3acd284e922506cceacae6237122
-
SHA1
e28352afe373d8b48a91fb4b47f3156e5cd53c75
-
SHA256
135233dd79adea4780ff6f08ddbaa954015d527a7e6544ab49c13c76c26cc676
-
SHA512
674cfe116f1beb5f1e5d828ef9f6cd76e4769dec9df56ac7659efd727ffa7f88616fa003987f6d3c92f212355889cda6713594b74ede3e73844d7f04207928e6
-
SSDEEP
3072:UAWi/g1IzuRb5xNAKY73zOyuj++038e8hk:Uzi/+VCHuyuj++03
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
nowa
C2
77.91.124.49:19073
Attributes
-
auth_value
6bc6b0617aa32bcd971aef4a2cf49647
Signatures
-
Redline family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
1328-97-0x00000000003D0000-0x0000000000400000-memory.dmp
Headers
Sections