General
-
Target
2504-18-0x0000000000400000-0x000000000041E000-memory.dmp
-
Size
120KB
-
MD5
8d44004d79d5d61ad6ec38bf9e055b05
-
SHA1
ceccb308717890c5a7639a97c64199b2265bc715
-
SHA256
c645b38a9c0ff0d5dc62195849f34b4113f79fd612ee3210c28b4403fcd0f7d1
-
SHA512
ad55e2449c606a9142a67626b5419de7f9a571ec94a7fffab4ddd0927d649fe142cdd6adb5eb10a3c33dacd626b1ef87b494d32fe170ef7bb9e8565e75e0b9a3
-
SSDEEP
1536:9qs+XqrzWBlbG6jejoigI343Ywzi0Zb78ivombfexv0ujXyyed2E3tmulgS6p:r0gzWHY3+zi0ZbYe1g0ujyzdm
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
cheat
C2
130.51.40.37:55615
Signatures
-
RedLine payload 1 IoCs
-
Redline family
-
SectopRAT payload 1 IoCs
-
Sectoprat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
2504-18-0x0000000000400000-0x000000000041E000-memory.dmp
Headers
Sections