General

  • Target

    2356-12-0x0000000000080000-0x00000000000BC000-memory.dmp

  • Size

    240KB

  • MD5

    c9adbcaf24b60743dc3f710f9cab5a15

  • SHA1

    88d18c7212a4b3efe328fdb82642d5ddbb1e091a

  • SHA256

    775fed48e4dec65227e1069d9d58f2abad7ae6fda5c83ab9d08cc1af18aba606

  • SHA512

    0d6aa9352880290a384abcd962bf167602e013d1dc96a6f42acb6703eba81d7cb7ed9c9c1cd6da86144ff850e5e3aedf18e73155c2fe851577dbc59c737fd2c1

  • SSDEEP

    6144:nC4gdz070NgcoTrFzO2DzzzzzzHLzzzzzzzrzzzzzzzzzzzzzDzzzzzzL7z30yfE:7O5NgcoTrp9LrorsI

Score
10/10

Malware Config

Extracted

Family

redline

Botnet

LiveTraffic

C2

77.105.132.87:6731

Signatures

  • RedLine payload 1 IoCs
  • Redline family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2356-12-0x0000000000080000-0x00000000000BC000-memory.dmp
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections