General
-
Target
1368-313-0x0000000001020000-0x000000000105E000-memory.dmp
-
Size
248KB
-
MD5
4706d2aeab99c86e2496aa0405638531
-
SHA1
f38e47b15f90f640dd5747b3b6ce45201942b512
-
SHA256
52f136425e04585e5553ff0a15e7da33872065602d21ae47ba74ba7d0a687f8e
-
SHA512
dbeee3c0cf219df596319161b5dbe1e6bcf6e5a9ab541aa94f478d2e880fb4b501ad52166e9ff89990c205965fe866d901c573c76ec3a1055351ed58c45c5664
-
SSDEEP
3072:g2PLqOze7nDNgcYde+t9P/Kt/qbe9aKC9GYYOtLDc:g0Lm7DNgc8vtO/D9aKC9V5tL
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
clientfile
C2
194.180.49.159:80
Signatures
-
RedLine payload 1 IoCs
-
Redline family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
1368-313-0x0000000001020000-0x000000000105E000-memory.dmp
Headers
Sections