General
-
Target
1168-97-0x0000000000450000-0x0000000000480000-memory.dmp
-
Size
192KB
-
MD5
2d502deb68d8246b7da7c1673bb9cf6d
-
SHA1
857f9380c05e0242ebc4e4cf79f01eb7e490e209
-
SHA256
629bccca453121f7dbb8591dbb7501e308f40c0f20a092491b95ac2ac381b795
-
SHA512
96acb19afd7a0685c910d5d9d3cc587cd653c6eb788f0f8a0b12b4b53b863df889916ab47dc2a5dde1eb061d7d4eff13cbe179446fa8716aa088e8558e8396c3
-
SSDEEP
1536:ZDrRuq1Ps36sv0W7TRVOQM6fwrHwhn/rQbg5fb25LxNcqYQHnbuxaNLQmpTu0Gkr:B8sO/O2DnEba0LxNEyPNcmpTu58e8hT
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
kira
C2
77.91.68.48:19071
Attributes
-
auth_value
1677a40fd8997eb89377e1681911e9c6
Signatures
-
Redline family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
1168-97-0x0000000000450000-0x0000000000480000-memory.dmp
Headers
Sections