redline | 2576-37-0x0000000000080000-0x00000000000D2000-memory[.]dmp

General

Target

2576-37-0x0000000000080000-0x00000000000D2000-memory.dmp
Size

328KB
MD5

4679ee97288d14198fa938c5ec8ff6e4
SHA1

916d33e5539c650f0d4b9843240aa1d5953fa5e4
SHA256

b7afe886884910bad59afc0268b92791810bec4e72ddf1494780df2a68dd1774
SHA512

adc38eccb7ab5a96ddc80b2f6a4f00357a2d53f922cbb562181ff38f2d58d58b43eecb8cb2e9e667ce44f0b5d48448590962e3ee62cc7df4e7c2dea5ce8e2bf7
SSDEEP

3072:U2yLP/YAQlW30GLsbAmNrb2S8rdNdAXen0gSYxQbhQAgkVMRqT6Dv/YKeqiOL2bX:pxdbAc2PBjANgRxWKAXVMRqT6D4YL

Score

10^/10

gads01 redline

Family

redline

Botnet

gads01

C2

194.87.79.209:34130

RedLine payload 1 IoCs

resource	yara_rule
sample	family_redline

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2576-37-0x0000000000080000-0x00000000000D2000-memory.dmp