redline | dec104685142e897d5a5d77b4101281390a6a190ceb263ac48ee352cf4cbbd8d | Triage

Sharing

General

Target

1188-58-0x0000000000400000-0x0000000000428000-memory.dmp
Size

160KB
Sample

221111-cf1ersabhq
MD5

f5fda3168f9bbafcfbb109f41f86be20
SHA1

13cfc0376a54a730dfd667341ec9acb7d3159b80
SHA256

dec104685142e897d5a5d77b4101281390a6a190ceb263ac48ee352cf4cbbd8d
SHA512

08ff6d483c8c41f4fabf4308ef87af58df4f1b77a2562db0ba61335c811a1330442d5b8dd89eb038050b64c9fd4b1e3172da3d398c321381ca6bf6c34adcba0f
SSDEEP

3072:wYO/ZMTFH3+WIQjGn0o0jv1+aWF6yGXehNSS:wYMZMBH3VI130nuGeh

Score

10^/10

redline persecloud logs

Malware Config

Extracted

Family

redline

Botnet

PerseCloud Logs

C2

151.80.89.227:45878

Attributes

auth_value
f35e78a6b4be27a5c8621510cdcfa361

Targets

- Target
  
  1188-58-0x0000000000400000-0x0000000000428000-memory.dmp
- Size
  
  160KB
- MD5
  
  f5fda3168f9bbafcfbb109f41f86be20
- SHA1
  
  13cfc0376a54a730dfd667341ec9acb7d3159b80
- SHA256
  
  dec104685142e897d5a5d77b4101281390a6a190ceb263ac48ee352cf4cbbd8d
- SHA512
  
  08ff6d483c8c41f4fabf4308ef87af58df4f1b77a2562db0ba61335c811a1330442d5b8dd89eb038050b64c9fd4b1e3172da3d398c321381ca6bf6c34adcba0f
- SSDEEP
  
  3072:wYO/ZMTFH3+WIQjGn0o0jv1+aWF6yGXehNSS:wYMZMBH3VI130nuGeh
Score

1^/10
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

persecloud logsredline

behavioral1

behavioral2