General
-
Target
2996-41-0x00000000001C0000-0x00000000001F0000-memory.dmp
-
Size
192KB
-
MD5
39ad0c595da9e54d67244142114380ce
-
SHA1
8644c9203881eddb183eac56fd349043c6ae604c
-
SHA256
31ad11420c7c98bb55438b657a4b277b7ffa2668b557253393cfc47d690a5294
-
SHA512
ac9847e411777eea062156dd4dea5e1baba7655d24fae4d9e3d710c7eab6a4044350721730b3bf65f024facbd34a210e826ccb5d209fadaf40b231b114844933
-
SSDEEP
3072:eR4N7CPvI0YSzSQ02OEBg33G7E0swdBqSsQ5J08e8hj:eRdvI0YSN0g7E0B2SsQ5q
Score
10/10
Malware Config
Extracted
Family
redline
C2
38.181.25.43:3325
Attributes
-
auth_value
082cde17c5630749ecb0376734fe99c9
Signatures
-
Redline family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
2996-41-0x00000000001C0000-0x00000000001F0000-memory.dmp
Headers
Sections