General

  • Target

    1980-0-0x0000000000220000-0x0000000000250000-memory.dmp

  • Size

    192KB

  • MD5

    015970981711ca04552ebc88d96ee095

  • SHA1

    fcaf243bdc72a133068a0c4027f5baee1e0cf7f7

  • SHA256

    5d76f8a8725823f2fc4fdaf8f79ae4ef6db25d18326b90db4ccdcb106e557eac

  • SHA512

    4843765fe5086f9e2e75dcb5bb0215caca2a2c54787d63177c403426737401c09abf52c6b667c3fa5263ad195f8d3a1f5efdd1be0d01a9eeee852d1ab7f6f77b

  • SSDEEP

    3072:gpO9UfEyWI0VqADsOfrhA2iWtAT4QE0kMIXYchPFtnYJH8e8h1:gpO9yWI0VqADdrQE0lchPFtnYB

Score
10/10

Malware Config

Extracted

Family

redline

Botnet

@lightzee361

C2

vikaneleneer.shop:80

Attributes
  • auth_value

    1c3c5d1241b4c1d5baf83287cc9901e9

Signatures

  • Redline family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 1980-0-0x0000000000220000-0x0000000000250000-memory.dmp
    .exe windows:4 windows x86


    Headers

    Sections