General
-
Target
2024-122-0x00000000002F0000-0x0000000000320000-memory.dmp
-
Size
192KB
-
MD5
7d0d2b9ab3fbd87ee1b2171508ed16ba
-
SHA1
c7d09f2a21b0203e5a5f4be61de2a142389bfc3b
-
SHA256
dc67b67d09e17eb0b1e1e62dba9dc21ae8843daddec80fe629509b63ffdd3969
-
SHA512
153bebe1eac4b775cc110cfdb45498603f894f575023cfb0bc83a1ce7aa28076d6604fa047a8cf714425e0670107ededee843c2babc86d3225738c86781dcb81
-
SSDEEP
1536:XlBA36sv0W7T1sjvrHzbNSISuiiB0J57TNyQGxNXLYQLrbuLh8yrEHVF+0GkR88U:XrqCnNsZWSZ5GxN8yi8yIHVF+j8e8hO
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
masha
C2
77.91.68.48:19071
Attributes
-
auth_value
55b9b39a0dae383196a4b8d79e5bb805
Signatures
-
Redline family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
2024-122-0x00000000002F0000-0x0000000000320000-memory.dmp
Headers
Sections