General
-
Target
2132-0-0x00000000001F0000-0x0000000000242000-memory.dmp
-
Size
328KB
-
MD5
b9a5427061ef0fd9040c562e15d3d9a1
-
SHA1
eaf4874e969a8ff75f24c6c51f32fafd4cd328f7
-
SHA256
69031c1c4a4b421ae64e573cf35f2b44eb23b76f275c6b8caddf8235260a76a9
-
SHA512
bba4a331b3147dfbbae23d7722d3a70b4a3d36e26293f12d0750d4413243b25fd367922e39a24de0527af7b8acd3eda5308d0593c0f9be30ca7e7bbcc59154d1
-
SSDEEP
3072:72wLEsYUQzNKtLUbWANieiZixKMD4UydbXwnJQjx9R6AgkVMRqT6Dv/YqeqiOL2w:qxbWxn1bRx98AXVMRqT6D44L
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
@mass1vexdd
C2
45.15.156.167:80
Signatures
-
RedLine payload 1 IoCs
-
Redline family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
2132-0-0x00000000001F0000-0x0000000000242000-memory.dmp
Headers
Sections