General
-
Target
2228-97-0x0000000000250000-0x0000000000280000-memory.dmp
-
Size
192KB
-
MD5
2a51cfa8f8927b68e6562e2ab1d7a021
-
SHA1
2c1f5d6e45bc3221d1ddca663ed2c19bba156064
-
SHA256
c5d9f0b9526dca32604f7eb22a504699bf4e6cc4b420f66dbec8bc03e97cc369
-
SHA512
423d13bc03beeb68e397007d44e9c2d03586d9aa1421571ded3c0c87f701273eddb79b0ab9ad056d950c9df469c65e40895f93295e77e7c8e6e01b80c67d8ed3
-
SSDEEP
1536:4DrRuq1Ps36sv0W7TRVOQM6fwrHwhn/rQbg5fb25LxNcqYQHnbuxaNLQmpTu0GkL:I8sO/O2DnEba0LxNEyPNcmpTuZ8e8hT
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
kira
C2
77.91.68.48:19071
Attributes
-
auth_value
1677a40fd8997eb89377e1681911e9c6
Signatures
-
RedLine payload 1 IoCs
-
Redline family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
2228-97-0x0000000000250000-0x0000000000280000-memory.dmp
Headers
Sections