General
-
Target
36925520x00000000007B0000.dmp
-
Size
7.4MB
-
MD5
bc45191ff9411de997d6aa5eaab1846f
-
SHA1
99c71914ff965974913ce9ede31968b9baa61757
-
SHA256
fd5ecfd9c8d39332ab87ba1323f30c4e0116afb6509498fa0a2dc473e130013d
-
SHA512
a5484653f9fc8fc6c2acc21314d2554ae89822205c83f42ec4667c47551c4d3876be0106dee10e74be86b1475ddf92b0451e0248a20f6b7056382ce0e20a76a2
-
SSDEEP
98304:ENEsORRmmxXgdEXKHWnogb9rnxbw1zHRfuZl1M4UdlgtEYWp3x6ZfbVUzOfru:ECzRRmmxXg6LN9dbTz7U0tEzh6ZCu
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
020723_rc_11
C2
newfk.tuktuk.ug:11285
Attributes
-
auth_value
7844691e7577455d1a963fbaa7d4006a
Signatures
-
Redline family
-
Themida packer 1 IoCs
Detects Themida, an advanced Windows software protection system.
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
36925520x00000000007B0000.dmp
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections