General
-
Target
1840-57-0x0000000000080000-0x00000000000B0000-memory.dmp
-
Size
192KB
-
MD5
6d41adb9591e7be3429fbbc3405ff7be
-
SHA1
27d506ea29445b6b7d3dd96304985ac192e04313
-
SHA256
ccfcdfe8e4b4ca95ed02ca94b29411e800ad317090679294031a4379289c63cf
-
SHA512
b9d9de41486d5fc3972ca7f22ef351daa1a841acf6f3526fdd9ac911d91c67f4f20e6e7a08883a8a81c09a1eee68e7cc70a501fce900d808207931855e6248f9
-
SSDEEP
3072:Yf4yIF9BFXI0JDFtuQObq/8eQwB1rE0Smgem1bohJl8e8hs:Ygn7XI0JDFtuKQwB1rE0je1bohj
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
1006
C2
176.123.9.142:14845
Attributes
-
auth_value
b5da80860b093905c2bba6f9377af704
Signatures
-
Redline family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
1840-57-0x0000000000080000-0x00000000000B0000-memory.dmp
Headers
Sections