General
-
Target
2888-1241-0x0000000000400000-0x0000000000430000-memory.dmp
-
Size
192KB
-
MD5
1a3d74b128dc31260ee589a6d5666ea9
-
SHA1
22b4240ef60f3901e961f928dfcdffd6028626b3
-
SHA256
7ce2503b05f1dff517d62c46a7cbfed179597f030394f8571bccc9afe5b67581
-
SHA512
5f7daf31f7dd5c911edf63330b3e9e480353a70f89069958d4eee2c045a07ff891828b190abddf81867403204a53708c3b079db359636282870ce887877c3446
-
SSDEEP
3072:W17qN5G5ek+FKIsUGO1xNLCiQXrdmlQ8e8ha:wRskO6UGO1v6CQ
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
cc
C2
94.228.169.160:43800
Attributes
-
auth_value
ec4d19a9dd758ace38b4f5b4a447b048
Signatures
-
Redline family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
2888-1241-0x0000000000400000-0x0000000000430000-memory.dmp
Headers
Sections