General
-
Target
2584-444-0x0000000000400000-0x0000000000430000-memory.dmp
-
Size
192KB
-
MD5
590f2815040cd4a870bb9297d7e03c2a
-
SHA1
ad880498b0c5cf856cdf1eaf85b1913898fb45e9
-
SHA256
a2c8f0a0d84f2641b9947bc83be90ca43725b2fe8e482b7bcd72fc27ebe9ee00
-
SHA512
327442b1261d2be37b559c7d78efc6998c08c4129356f5f7373c3199a0531f8fb2803f6253d61bca593adfd5fb46c3328addc39e8eecba8464deace1b6cc6058
-
SSDEEP
3072:Jl3Dbg6cXoCL4TlQqxNQsD03mgz8e8hc:JldcXpd+gz
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
070723_rc_11
C2
amrc.tuktuk.ug:11290
Attributes
-
auth_value
5c003bb2a44f6538df34879227a9ad34
Signatures
-
Redline family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
2584-444-0x0000000000400000-0x0000000000430000-memory.dmp
Headers
Sections