General
-
Target
2204-54-0x0000000000220000-0x0000000000250000-memory.dmp
-
Size
192KB
-
MD5
f41cf05cb804415e41a2df08a48231c7
-
SHA1
8b33684d00f26ab946449cc318f2397b7e519fee
-
SHA256
1d831d731250957d4ddae81b7dbbf94aacb16d91f8c14576b1355f0ba5b6e4fc
-
SHA512
499cd012fd6322412f24c51660b497e8caa47b0a666427d997a46bbe8ba97c9945095a73327cde6e1b46f7b16261f84390347b86e89684f51df8e63b90804835
-
SSDEEP
1536:hY15c36sv0W7TJDGfrH+ltJaboJHHLjjjjjjjjjjjjjjjjjjjjjjjTjjjjjjjjjz:iLe5TlP/HHPixNGUxB279Fx8e8hG
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
@WinBinLow
C2
45.9.74.149:48852
Attributes
-
auth_value
f7d8268222997f5a0b2fde81e0514f51
Signatures
-
Redline family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
2204-54-0x0000000000220000-0x0000000000250000-memory.dmp
Headers
Sections