General

  • Target

    2220-151-0x0000000000020000-0x000000000003E000-memory.dmp

  • Size

    120KB

  • MD5

    764c3514f594904e3398b53a2a3cc13f

  • SHA1

    6cd9c45f768acccdfa0c0b155cf643d6ab1400d6

  • SHA256

    e34d9d06cc239b2c296e87acb41be8c3bca8e2bd188a9f8d6fc6f5081d2b4d2f

  • SHA512

    bcb6743a978b18c579919ee1a2dd8446420a11745bb2a487fff49d070446b013dbdfb8fe680af09ff632e7af1510f25044dca6871112bf70cbdc1e66c5b1cea7

  • SSDEEP

    3072:13HcjBPe7NerE+CrFkDSuOkZDcXiqEqVX6:1eGKDRAXb

Score
10/10

Malware Config

Extracted

Family

redline

Botnet

6012068394_99

C2

https://pastebin.com/raw/8baCJyMF

Signatures

  • Redline family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2220-151-0x0000000000020000-0x000000000003E000-memory.dmp
    .exe windows:4 windows x86


    Headers

    Sections