redline | 1652-2267-0x0000000002510000-0x0000000002542000-memory[.]dmp | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1652-2267-0x0000000002510000-0x0000000002542000-memory.dmp
Size

200KB
MD5

2b10447466625439ce74820b68eeb893
SHA1

defa128b21ab7d77e7861270ec20830b2f98d8a9
SHA256

ff0d9ddcacaed6906e87991ebeece6763724fda4847fc8e067981573a13864d3
SHA512

ca8ad2e8394208dfb53fb2d50d4aa5847973a96fc959bd4c0b75d45a4d05773204db351c1361cce48dbaf64dd6ffcae17cbe9ec1756683986737725ce2a89ecc
SSDEEP

3072:ozDdAubgUE4j/HqVkKcO9XnpSN/8e8hBE:ozDOu0UPfw9XnpSN/9

Score

10^/10

redline

Malware Config

Signatures

Redline family
redline

Files

1652-2267-0x0000000002510000-0x0000000002542000-memory.dmp
.dll windows x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorDllMain

Sections

.text
Size: 176KB - Virtual size: 176KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ