General
-
Target
1144-162-0x0000000000450000-0x0000000000480000-memory.dmp
-
Size
192KB
-
MD5
be8383ff3ed667d95cb1cfab9baa7b60
-
SHA1
47f3d841faf031e644faa88b8d6fe20b1748343c
-
SHA256
bdb2e650125504ed939597d0ad6da4c2715a7ac2da7abb3763b73e9d863e8f3f
-
SHA512
2933b47936031b8648586cba71c455c0f7ad13780cface1157d28ae28c7707ad961957eb17c3eff9f7a91c53b0ee39cb800e944d5ece89f7148f5f1777183d22
-
SSDEEP
1536:lDrRuq1Ps36sv0W7TRVOQM6fwrHwhn/rQbg5fb25LxNcqYQHnbuxaNLQmpTu0Gkr:l8sO/O2DnEba0LxNEyPNcmpTu58e8hT
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
kira
C2
77.91.68.48:19071
Attributes
-
auth_value
1677a40fd8997eb89377e1681911e9c6
Signatures
-
Redline family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
1144-162-0x0000000000450000-0x0000000000480000-memory.dmp
Headers
Sections