General
-
Target
2936-77-0x0000000000270000-0x00000000002A0000-memory.dmp
-
Size
192KB
-
MD5
24fee3bd1625be8b20f24b65ae3394ee
-
SHA1
3944cf239a1035802d061bb60edeadac0f9fab83
-
SHA256
23e7bfbf6458ae758e8d572758367c80e9e29b68d09c439e9fe6af13d64b2f52
-
SHA512
a4179e418ed3d3ae26e54239fbdc2e42a44af661437ac8713f84bb2abb54f442cfae61996a993d4bb7c41399efbb11969e43a85cf9d9d7186ec84695ec88be04
-
SSDEEP
1536:MDrRuq1Ps36sv0W7TRVOQM6fwrHwhn/rQbg5fb25LxNcqYQHnbuxaNLQmpTu0Gk9:U8sO/O2DnEba0LxNEyPNcmpTuD8e8hT
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
kira
C2
77.91.68.48:19071
Attributes
-
auth_value
1677a40fd8997eb89377e1681911e9c6
Signatures
-
Redline family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
2936-77-0x0000000000270000-0x00000000002A0000-memory.dmp
Headers
Sections