General
-
Target
1804-83-0x0000000000290000-0x00000000002C0000-memory.dmp
-
Size
192KB
-
MD5
1f2b47f9852c3e9bc8c34448fc5c86db
-
SHA1
799837fff598a4692fe35ede1360475328c7cc7f
-
SHA256
cf8da6a487669976bb9db50d9a042dabbdec9a167ddcbf9dec88c0d75d1c271f
-
SHA512
4411e8815be2c65e39427d4ece4251336b63c9cfa99072c8934be32363dcc66016a82e22a444b4ae3ebddbe04ca608a76f73f7d6349c099e9f33a60957a9dfa4
-
SSDEEP
3072:LN9zgaHeuGhriktrBxN3kuZ+zdzK8e8hj:R9Ie4rhTodzK
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
furod
C2
77.91.68.70:19073
Attributes
-
auth_value
d2386245fe11799b28b4521492a5879d
Signatures
-
RedLine payload 1 IoCs
-
Redline family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
1804-83-0x0000000000290000-0x00000000002C0000-memory.dmp
Headers
Sections