General
-
Target
98792-56-0x0000000000400000-0x0000000000428000-memory.dmp
-
Size
160KB
-
MD5
298a3c8cd4a06d92662d84a048470f11
-
SHA1
af609357f81c80f3adefb7ae78936d0ef413c833
-
SHA256
f657c2aac869c51c948d1d13ac9bcbe87d702f8b889d28ca818c00af38820554
-
SHA512
26b70690ade103c36b8cb8643e73ec300e7fe7bf06c011188ff017e121b8b73e479c3d7a955f829a68477a520c88557ceb6552b306d139f3ba7ddeeeb7aa7070
-
SSDEEP
1536:U6GETCdlRendrAC4/PH5zeUurt73SCnmfAUOKDGnbuc+OAPji4y0wuei1Gb3d3E4:zGEkujCYzUrAFKqbFZUi4yh9y4
Score
10/10
Malware Config
Extracted
Family
redline
C2
45.138.74.121:80
Attributes
-
auth_value
ad4a839bd4baf60e37ba9f7a6158702e
Signatures
-
RedLine payload 1 IoCs
-
Redline family
Files
-
98792-56-0x0000000000400000-0x0000000000428000-memory.dmp
Headers
Sections