General
-
Target
2564-257-0x0000000000C60000-0x0000000000C7E000-memory.dmp
-
Size
120KB
-
MD5
8f07efcc94eef1d0165e765c269fd068
-
SHA1
094c35c0bbdbf92f3f85b473f4aec9eec431aa30
-
SHA256
1af3fa562320a8c0b79b7b2b7e0c711e5595b2cea46ee48cb6474be838134e8a
-
SHA512
5e8e38973e30c5c500bd8e800f0538bc3ada7b25b1653e2a1b8da8d64445d4cf0d1742e5778f9ae8719406a3cf234ccb4d2ec4191e4cb3fbbfafb5ab6db800f8
-
SSDEEP
1536:sqskoqu3lbG6jejoigIH43Ywzi0Zb78ivombfexv0ujXyyed2atmulgS6pOl:6t1FYH+zi0ZbYe1g0ujyzdeO
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
pixelscloud2.0
C2
85.209.176.128:80
Signatures
-
RedLine payload 1 IoCs
-
Redline family
-
SectopRAT payload 1 IoCs
-
Sectoprat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
2564-257-0x0000000000C60000-0x0000000000C7E000-memory.dmp
Headers
Sections