General

  • Target

    2364-0-0x00000000002A0000-0x00000000002BE000-memory.dmp

  • Size

    120KB

  • MD5

    39ff832810b132e9df1dfe6afad18ac2

  • SHA1

    adb10372d303654cc3368ef8b7256202a567d808

  • SHA256

    b97d035981e0aa1db841e5cee74bd028eeca35f8e76b7e0571504ab805a3cb8a

  • SHA512

    1e6da2aaee2681d1616edad9c602a480e0d23227fd8900751312808e39c9bafd9bd8744ed7d5fc4e65c1b2de42ab660861e94dccf55712a4ea238532b59e98b0

  • SSDEEP

    3072:/3HcjBPe7NerE+CrFkDSuOkZDcXiqEqVXC:/eGKDRAXL

Score
10/10

Malware Config

Extracted

Family

redline

Botnet

5844778753_99

C2

https://pastebin.com/raw/8baCJyMF

Signatures

  • Redline family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2364-0-0x00000000002A0000-0x00000000002BE000-memory.dmp
    .exe windows:4 windows x86


    Headers

    Sections