General
-
Target
344-123-0x0000000001360000-0x0000000001842000-memory.dmp
-
Size
4.9MB
-
MD5
d1c52ff778d713d64e0ba12ac993e546
-
SHA1
62ccbaaa0ac54e4106d14e409933c298bbb68e7c
-
SHA256
abb044d8153332ce3aef4780f29464f6ca4d005f9af3c518dbd55d5c2c475773
-
SHA512
b32d3caf5e0e510e152de2a58f568283ec7c478355e39628a448aab5737a7e29d3b12a4f01283ba5a4d702e186dc9a2d3d72224105b1c628cf7bde1b9b0fd860
-
SSDEEP
98304:YwJXqjNqccVFeY2QVQKBwEi6xNzkMJ5Zo:hGYFeY2A5Bti6Hky5C
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
pure
C2
45.9.74.117:15394
Attributes
-
auth_value
3956dc20bead698db976f00fe195e23d
Signatures
-
Redline family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
344-123-0x0000000001360000-0x0000000001842000-memory.dmp
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections