General
-
Target
1004-79-0x0000000000260000-0x0000000000290000-memory.dmp
-
Size
192KB
-
MD5
59b3d3d01391a5c5f048ada7dbad78fb
-
SHA1
ef28fe98cd907acbee77eb48a0cf2bfa6493a8c7
-
SHA256
78b92e5690c3adde9f52131a4baa3d4b546782559c081dece179d4c4856cccee
-
SHA512
cedd48841595f96461692735fb60e788ef24a9fb4d5e9ec3d351b3324c9180beeaf95253a278a70227206e18c1e759184314c8f560bb0b7ecc2c524c928780b5
-
SSDEEP
3072:8wFwJp8A/xdimI06X7vV6OPEsUc/W0E0ilHPgM1JW8e8h3:8szAmmI0k7vVe0E0YIM14
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
lux3
C2
176.123.9.142:14845
Attributes
-
auth_value
e94dff9a76da90d6b000642c4a52574b
Signatures
-
Redline family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
1004-79-0x0000000000260000-0x0000000000290000-memory.dmp
Headers
Sections