redline | 3540-187-0x0000000000990000-0x00000000009CE000-memory[.]dmp

General

Target

3540-187-0x0000000000990000-0x00000000009CE000-memory.dmp
Size

248KB
MD5

69e5b02b68d2d7a4e784a6083ec07ae0
SHA1

4af097700c28b726d0c2c63129e774a1a42e23bc
SHA256

d9a0def641305462f2cc5f43610c21c9a4458b27eb76488d13b2f0539470d604
SHA512

9489781628f4c5864de5ecb51d457296fefcc2eeafd19d19c463562cc1d0450f66965059814dce5d3136ea0dde29667f9dc2c11fba8ddb1d6b2146d81b353db6
SSDEEP

3072:bEjJpWunbNgcc+fw1nRKlnwT84Zhct/qR8NbtS6GbmhmadD:bGTWubNgcc+I1nRKlwTQ/PNbtS7Khma

Score

10^/10

Family

redline

Botnet

@ytlogsbot

C2

185.216.70.238:37515

RedLine payload 1 IoCs

resource	yara_rule
sample	family_redline

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3540-187-0x0000000000990000-0x00000000009CE000-memory.dmp