General
-
Target
1120-1-0x0000000000580000-0x00000000005B0000-memory.dmp
-
Size
192KB
-
MD5
dea8943838c73b08eb5aa34b4bd0a58b
-
SHA1
ba62dd55a388704d14f2043706a4d697bc93a991
-
SHA256
046c99699439fe5d4093333820983c2d8b718d6a704a0c6db4608a15b3769718
-
SHA512
f742e97aad8c8d1e5ce2892520bc7e58baa198054ad68f4c92144aa704b0178752419a251e8d3e82a93e667d44cfe0f34b2b4b49dc89dbe3529b2b4575754047
-
SSDEEP
3072:c1D4EkRI04zgdKO+SVg1ibihE0I1yJnQJB8e8hb:c1GRI04zgd+ICE046Q3
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
040923_rc
C2
sept4em.tuktuk.ug:11290
Attributes
-
auth_value
47c23aee408443d5484756dcc468f53a
Signatures
-
Redline family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
1120-1-0x0000000000580000-0x00000000005B0000-memory.dmp
Headers
Sections