General
-
Target
3068-116-0x00000000002D0000-0x0000000000300000-memory.dmp
-
Size
192KB
-
MD5
acf31d7da8ac84d037d225f8b8b99365
-
SHA1
99b95c5fb8cd08be3713d4212b9d0f88a3974e9e
-
SHA256
991d51a35fdb651cc2da86cb30db0d7a0d768231fdffe9c661b342eab6b79246
-
SHA512
2ceff253e774f22b175d68aac08fb1d3154403640f9f9177d869f06daacff9e27c992ed7dfcc66e60fc3331c53519d9df717b3f7a6edef5dc9316b6e342ef54c
-
SSDEEP
1536:alBA36sv0W7T1sjvrHzbNSISuiiB0J57TNyQGxNXLYQLrbuLh8yrEHVF+0GkRq8U:arqCnNsZWSZ5GxN8yi8yIHVF+J8e8hO
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
masha
C2
77.91.68.48:19071
Attributes
-
auth_value
55b9b39a0dae383196a4b8d79e5bb805
Signatures
-
Redline family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
3068-116-0x00000000002D0000-0x0000000000300000-memory.dmp
Headers
Sections