General
-
Target
1148-83-0x0000000000250000-0x0000000000280000-memory.dmp
-
Size
192KB
-
MD5
f8f498b65c9f09bd90b5ceb189372f02
-
SHA1
9a52440a0e94abf92cfcdc9dc8188d2bc8198043
-
SHA256
f72dd8faef06b43a30604e72a769d6e20c3a6337e5c5028511f99cb0ceb4e20e
-
SHA512
dad620ea8725483e1821323bf8c439b36e887c6e72d1fc7a85c36e8b1e53a7bfff9105d9615198fe2f8203b6cbdb994229909c85a7835165c1ed59adc99d2e2c
-
SSDEEP
1536:3DrRuq1Ps36sv0W7TRVOQM6fwrHwhn/rQbg5fb25LxNcqYQHnbuxaNLQmpTu0GkL:z8sO/O2DnEba0LxNEyPNcmpTuZ8e8hT
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
kira
C2
77.91.68.48:19071
Attributes
-
auth_value
1677a40fd8997eb89377e1681911e9c6
Signatures
-
Redline family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
1148-83-0x0000000000250000-0x0000000000280000-memory.dmp
Headers
Sections