General
-
Target
1124-97-0x0000000000250000-0x0000000000280000-memory.dmp
-
Size
192KB
-
MD5
e85518092e7f67643441168c84f21e14
-
SHA1
c08fa9362e2396e08ab9312e482bb1d44ae4961c
-
SHA256
83c4d9a46ca4a1f531bd3519293b306b01d94e53e2063f5bf68534fdb13a5c64
-
SHA512
33f1d3021273c89d3a015d19905f3398f06b9a7f34f459dc2816bb7543c1e84badc413e1bfbbd67920c004bfaee97a161d34fbf92afaf00747a6c62f8e011e17
-
SSDEEP
1536:kDrRuq1Ps36sv0W7TRVOQM6fwrHwhn/rQbg5fb25LxNcqYQHnbuxaNLQmpTu0GkL:s8sO/O2DnEba0LxNEyPNcmpTuZ8e8hT
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
kira
C2
77.91.68.48:19071
Attributes
-
auth_value
1677a40fd8997eb89377e1681911e9c6
Signatures
-
Redline family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
1124-97-0x0000000000250000-0x0000000000280000-memory.dmp
Headers
Sections