General
-
Target
2228-54-0x0000000000250000-0x0000000000280000-memory.dmp
-
Size
192KB
-
MD5
2ab4f8d5a01d4938498b060d4c080423
-
SHA1
1db4b36fd1d109d49c946be5148d2b516af169c8
-
SHA256
867f081ad6d1a55fcbf7dfbd99f9ad3de752220e45a6b71aa5c3c2ae92c67eda
-
SHA512
336f90bd34a5214fcd7dda681f74656492fc4df526ec596c763519e07d38539b42414fbdb00508f5406703eaf1892e8a8d1943d9b2e62bc674689a5a9245eff6
-
SSDEEP
1536:tuctgGMg36sv0W7TWmirbrHsS3qcH0JWjvRzIwGaxN9CYQbTbuNLsgdxQc0GkRcQ:hg/KDTqVH6sIwGaxN3KIRdxQc/8e8hj
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
dcrat
C2
94.228.169.160:10902
Attributes
-
auth_value
dd83347b7ad7edab396004339c8062e3
Signatures
-
Redline family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
2228-54-0x0000000000250000-0x0000000000280000-memory.dmp
Headers
Sections