General
-
Target
1792-1199-0x0000000001140000-0x000000000117E000-memory.dmp
-
Size
248KB
-
MD5
267f5be17d09178006bd0d356504c4c4
-
SHA1
1a52b85f0dd850f80037490aea2cd679b95f8edc
-
SHA256
ac9733bd7fbc5e41e676e2f3f6fdd484ad1bcb4a56c992e6b1dfb09ef9901235
-
SHA512
b437c760438345d98193e643f1ae640f89d311446f528768ac5c31d57d442b34c64b038fae34cdc57fb939af2aaa1d5a79bcbaaddf39539beccb3bfba4d46a6d
-
SSDEEP
6144:UgrADDNgc6jYb9PXl3/f8FuAqSkiLWD+a+:zrEDNgc6jM2LO+a+
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
tests2
C2
185.216.70.238:37515
Signatures
-
RedLine payload 1 IoCs
-
Redline family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
1792-1199-0x0000000001140000-0x000000000117E000-memory.dmp
Headers
Sections