General
-
Target
2720-91-0x0000000000400000-0x0000000000426000-memory.dmp
-
Size
152KB
-
MD5
7fa5ab792ce800d2c7362781c1da7ce4
-
SHA1
e4c3feffb46e14c4db75a01fac77e0c62e55cdfe
-
SHA256
f5f53ff73c28c487efca2ec4f9c307c2118910d36e3f3c196b255fc667d5331a
-
SHA512
e8e340d12337b98b38b7d3b9280761ceb1cc58a0b4214af7af25238fac7b2ce2c596bb17122a87368776072ab83ede44888a4a2339b022709065e6adac5210d9
-
SSDEEP
1536:0aMcnVHT1i/o43poQ+fP/jMgkAbtu1wE/TphQ2hgjTGEbV76/O8qP:BMcZZM6PjMFA7ElBo3AG
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
DAwnLand
C2
212.113.116.143:23052
Attributes
-
auth_value
8fc5b8d18171bebfcf117ba0aad639d2
Signatures
-
Redline family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
2720-91-0x0000000000400000-0x0000000000426000-memory.dmp
Headers
Sections