General
-
Target
3056-55-0x0000000000400000-0x0000000000430000-memory.dmp
-
Size
192KB
-
MD5
a1f752aaf4b5056f098006046be0f609
-
SHA1
3ffdbfb345dc8403e32b85c3abce71d73d43a076
-
SHA256
ab396f0514530dfcc54e088cd85d9ab8be371c78e16e12a9bc87455ff8669823
-
SHA512
997307ca95d52ac8f074eee87b9841eaa8a2794395b6d043d0d3465e5d9c4016e507802a3e288a579af806a91ec3dcc5d2872e1fd6562f0fcce5296d0a53e2be
-
SSDEEP
3072:gQyqMwvEQLpRSePxNSACQ/8dtR08e8hV:lyELCTjdtR0
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
1red1
C2
77.246.110.195:8599
Attributes
-
auth_value
743c159c0234992dee4975bf5855347b
Signatures
-
Redline family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
3056-55-0x0000000000400000-0x0000000000430000-memory.dmp
Headers
Sections