General
-
Target
99836-56-0x0000000000400000-0x0000000000428000-memory.dmp
-
Size
160KB
-
MD5
818b08fb33a60c3914b8a9743cc34441
-
SHA1
282b3fa23be7fc220418e57ae13baedeea6fb895
-
SHA256
8ed28b56f3b2398eb536f0902d65ff0415eae766db02d4e6c6044edb3ac3c2f1
-
SHA512
06ad78c963216c1f1750c965a6e6bc521feaf8cf10c28fe3c19ffe6b592febffa8aeb5134953596b3339aa0d8fa2a6a5615e068ad07646d2fc63bdce8aa4d4d0
-
SSDEEP
3072:XYO/ZMTFTIcUZzX3fjVuDQLJiVmDFlURXqhmSSYR:XYMZMBTIcUB7VuQJYBqh
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
new1026
C2
denestyenol.xyz:81
exirdonanos.xyz:81
Attributes
-
auth_value
7bb3368e1ee4165fa24c42c04ead9b1f
Signatures
-
RedLine payload 1 IoCs
-
Redline family
Files
-
99836-56-0x0000000000400000-0x0000000000428000-memory.dmp
Headers
Sections