General
-
Target
1732-258-0x0000000000400000-0x0000000000426000-memory.dmp
-
Size
152KB
-
MD5
c959cd6c2ca2c4e383aabd1fbb020d3a
-
SHA1
6948ff82262a90efce26f3357d255e0ec0df15aa
-
SHA256
1c4ffdf6059373b52621153412d07706396c7d6967c1076f421952c4c6689833
-
SHA512
5eda66ec4efcba2ddbb672c0f4d87e6415053229ad975e20a138a1fd404592ae9b2b154d1053cd01c2e30c9e43bbef3ca96c45c8407fb38109133cb3f555f655
-
SSDEEP
1536:HagcnVHT1X/o/XpkE+fewzAc1Q1/9EmDvQhsjZgbV7q/6zfesYgibfbFDKsRY:6gcZZuaGwzAL1qmEewkiLYgafJlY
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
280623_rc_11
C2
rcn.tuktuk.ug:11285
Attributes
-
auth_value
7dbd026b7e6c26ab5e41958efd6a2a6e
Signatures
-
Redline family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
1732-258-0x0000000000400000-0x0000000000426000-memory.dmp
Headers
Sections