General
-
Target
2940-119-0x0000000000360000-0x0000000000390000-memory.dmp
-
Size
192KB
-
MD5
178feb133129b9929b578945ae141b26
-
SHA1
4cf12818fc242f8c0c970579a7a2f62583f520a9
-
SHA256
d3abcc9de919cdea116fbe694281fcfe3a1e2c156731bf9a44491ac068c024fb
-
SHA512
7fe78f70da0fd36c689a3d09cbb9b6de656bb232fc7171cc00bfd9e3401f61b25c4ed1429feabcfddac2e1ce84d5bd12fd92680bcd06f6a4a4a858cfb8c71a3d
-
SSDEEP
1536:LlBA36sv0W7T1sjvrHzbNSISuiiB0J57TNyQGxNXLYQLrbuLh8yrEHVF+0GkRv8U:LrqCnNsZWSZ5GxN8yi8yIHVF+A8e8hO
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
masha
C2
77.91.68.48:19071
Attributes
-
auth_value
55b9b39a0dae383196a4b8d79e5bb805
Signatures
-
Redline family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
2940-119-0x0000000000360000-0x0000000000390000-memory.dmp
Headers
Sections