General
-
Target
2384-54-0x0000000000220000-0x0000000000250000-memory.dmp
-
Size
192KB
-
MD5
95206ba2b40938eecb1de61fedb8c855
-
SHA1
0a673db51020a3a2a29705a6311902bcc96e6253
-
SHA256
81f9dd72c276f08f804de1168449aa15082cae36b9d6a4cd96e6f2490ddfd698
-
SHA512
94fa4719516ac0e47aba63d23c921b78192f716c461e04dc44834d07ade54a20aa9a4df383d1e931cab77d7fa45da0557c8f91b73b6e1ecc09649416859ea657
-
SSDEEP
1536:eDrRuq1Ps36sv0W7TRVOQM6fwrHwhn/rQbg5fb25LxNcqYQHnbuxaNLQmpTu0GkW:C8sO/O2DnEba0LxNEyPNcmpTuE8e8hT
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
kira
C2
77.91.68.48:19071
Attributes
-
auth_value
1677a40fd8997eb89377e1681911e9c6
Signatures
-
Redline family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
2384-54-0x0000000000220000-0x0000000000250000-memory.dmp
Headers
Sections