General
-
Target
2324-468-0x0000000000400000-0x0000000000430000-memory.dmp
-
Size
192KB
-
MD5
c451b5fe26563e4a439a6b5a43f82cf4
-
SHA1
899a601cb80f45e086bfe4c8f64dab812f0a0a99
-
SHA256
bce53f27693c4488799aa823da2d924e9d40b8b4e58592805eeb72b90f715a7b
-
SHA512
17af5a0a25390b89666df3739ea898c2ef86fbadcc3c621e2d889e26518a2a837a0f7fe911d1365c1dd40ec5f170a0c53ec53565a622d4eba850b8b5ad366100
-
SSDEEP
3072:P/hwlSqI0ztqWD6O25KOSwtMXXKE0OjCh9zVHJt8e8ho:P/zqI0zthDQtMnKE0Q6zVHL
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
010923
C2
happy1sept.tuktuk.ug:11290
Attributes
-
auth_value
8338bf26f599326ee45afe9d54f7ef8e
Signatures
-
Redline family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
2324-468-0x0000000000400000-0x0000000000430000-memory.dmp
Headers
Sections