General

  • Target

    660-87-0x0000000000290000-0x00000000002C0000-memory.dmp

  • Size

    192KB

  • MD5

    8d4ce5f7e1e037c97659e89ab394077b

  • SHA1

    7de486773cf166d3eb1b0cea4acfbd099e5ad53d

  • SHA256

    fe2352f9b5eb6f3845eb36843e4bc2f679653989f10a6007afb8c1f547b8eba1

  • SHA512

    dad0d0ad113130987aabce55413b95ce57cf203cbd77068f8beee1f821abdd7362e96bd7a54d918bd7c574cc66f9896f2aa9b40ec1668773fea7600729c02020

  • SSDEEP

    3072:B7FcUMo+9XJIZYExNjGof40fz4Q8e8hE:BFzoZLs3jz4Q

Score
10/10

Malware Config

Extracted

Family

redline

Botnet

furga

C2

83.97.73.128:19071

Attributes
  • auth_value

    1b7af6db7a79a3475798fcf494818be7

Signatures

  • RedLine payload 1 IoCs
  • Redline family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 660-87-0x0000000000290000-0x00000000002C0000-memory.dmp
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections