General
-
Target
1644-281-0x0000000000D90000-0x0000000000DCE000-memory.dmp
-
Size
248KB
-
MD5
4aa7c0413ec757650d6a7c30ff55cdf6
-
SHA1
7cf47239a3c58a75db866c54003eac19686bf18f
-
SHA256
ad692d4fa63582e76ddcd26eb0b3bfc77d05093bb5fb603eb7991e6e2bf5bbaa
-
SHA512
d36670a1628f60a9810a572546ec798d72a416a24672b0c7a17ff6443823e4c696126a3c0a159378a63754ac9052a4933ea2732bc529f4bd966599ee8e46f241
-
SSDEEP
6144:dgrADDNgc6jYb9PXl3/f8FuAqSkiLWD+a+:KrEDNgc6jM2LO+a+
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
tests2
C2
185.216.70.238:37515
Signatures
-
RedLine payload 1 IoCs
-
Redline family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
1644-281-0x0000000000D90000-0x0000000000DCE000-memory.dmp
Headers
Sections