General
-
Target
2708-11-0x00000000000C0000-0x0000000000112000-memory.dmp
-
Size
328KB
-
MD5
2eb92ca713c071914afd61aa0e171327
-
SHA1
146eb7e3e9fd01eaa3d8b24717d412ef9b211789
-
SHA256
ea4fc634db6f0fc324237bc1f6bbd679cc7c9029521ded369df2d90c0a106ae1
-
SHA512
1ea5c2c5e10c136b663b433ffbf1002a1fd6b00c056fac3da61afc1ff068d90b2f869e652242e0aae61b93f818950fe43ec2b93c3bd8c98c6cc00a8f62fd24b9
-
SSDEEP
3072:h2+Lb3YMQ4SvxLMb8gOlN2Z2S8rdNdAXVDnHLtxdhQAgkVMRqT6Dv/YueqiOL2br:o2b8gOQ2PBjAl3txdyAXVMRqT6D4EL
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
PShebro
C2
185.172.128.33:38294
Signatures
-
RedLine payload 1 IoCs
-
Redline family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
2708-11-0x00000000000C0000-0x0000000000112000-memory.dmp
Headers
Sections