General
-
Target
2904-906-0x00000000001D0000-0x0000000000200000-memory.dmp
-
Size
192KB
-
MD5
a2bdb29a93d50c1e1dd6392e99b2973f
-
SHA1
873d0d3295997489dca7bff05f556a9cd4206e6a
-
SHA256
af59c54108d93b31c77eac54e2f806aa0837d14fc20168af4276363b724d666d
-
SHA512
88eb9e9bd2ebd1053b000ea9e483210fdd4af73bc9fc4e29ce44a6d2be69fa3d59adc86c1e2b7b19a257f1ed176ee7e339dd039b9cfa306cd9eeca380261a353
-
SSDEEP
3072:hORGSnRfr3I0SbF/tOOc5XjVEHyYoqE0sAiJrFueJD8e8he:ZSp3I0SbF/OVESYoqE0XmFueZ
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
YT LOGS CLOUD
C2
176.123.4.46:33783
Attributes
-
auth_value
f423cd8452a39820862c1ea501db4ccf
Signatures
-
Redline family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
2904-906-0x00000000001D0000-0x0000000000200000-memory.dmp
Headers
Sections