General

  • Target

    2112-1-0x0000000000290000-0x00000000002D2000-memory.dmp

  • Size

    264KB

  • MD5

    ef5dcff28b86440cfefd0c86c47c7fd6

  • SHA1

    4e2c74041f1f9d0744a2481cb42a372c6df0b818

  • SHA256

    b20817838750b92fcb9e962ea336602e0d5d90325d906433fb8a68e0d3c7de46

  • SHA512

    9bc9673ab14bb1dfd1db705a46a7b585558ae448084267604fdfde43eb673f7a88b500d5f168b28627cdd4805d2c0737ce5c94f629a53b3eec1772bfb0df4d90

  • SSDEEP

    6144:vLtq7gNgc+2rRgFmuNVQN+zzzzzzHLzzzzzzzrzzzzzzzzzzzzzDzzzzzz77z52n:jdNgc+2rRP+Vwa2lQmPu

Score
10/10

Malware Config

Extracted

Family

redline

Botnet

333

C2

135.181.11.40:1928

Signatures

  • RedLine payload 1 IoCs
  • Redline family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2112-1-0x0000000000290000-0x00000000002D2000-memory.dmp
    .exe windows:4 windows x86


    Headers

    Sections