General
-
Target
1280-60-0x0000000000400000-0x0000000000444000-memory.dmp
-
Size
272KB
-
MD5
1acee3ad36a3862fa2e7fb11f4d10f15
-
SHA1
150251e5bbe92773ab8ec422845c8764948c7e11
-
SHA256
a8c498f5129af0229081edf1e535ac9dab6ad568befcbcecbfc7cc4c61e0a8eb
-
SHA512
05bfc30c161db5f09130b82eaec00f4d9aa90d522fe2fb68a91e4ac43d594b47db52368e9a07c006cfb42e30f735e429ac011e1eadfb559d2a97c89d2997cda7
-
SSDEEP
6144:RoH3+tFwKnLh6vDfNIslQLm3twDJshKZAdAq:uqwS6vLNIslQLm3twDJshKZAdV
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
TPB-ACTIVATOR
C2
amrican-sport-live-stream.cc:4581
Attributes
-
auth_value
df7c91432437b11d8f25d54ba7832b8d
Signatures
-
RedLine payload 1 IoCs
-
Redline family
Files
-
1280-60-0x0000000000400000-0x0000000000444000-memory.dmp
Headers
Sections