General

  • Target

    880-0-0x0000000000220000-0x0000000000270000-memory.dmp

  • Size

    320KB

  • MD5

    8c4c555d920a2064bbd07a8f6bec180e

  • SHA1

    085779a13b8c4084cc876745194c617b7921fab1

  • SHA256

    fb28f8900749f6a4cdc3d1513b95f18ed36e47bd821b3ce6f83dcbbd1fdf548c

  • SHA512

    a9153c29441b30d1ed4d620ea34ad52e01d6910e42cdefb1a64d3aafdea27f41235afb9cbe1a60f3d46358de9adafd10683a4b068042f486d30dc8ec30b9ba12

  • SSDEEP

    6144:pcZqT6DIueHrdCN/Oqn0PUNxf8wXu9TlbuiJalQ9gDmG6K1L:pcUWsjm/lQgJ

Score
10/10

Malware Config

Extracted

Family

redline

C2

45.15.156.127:48665

Signatures

  • RedLine payload 1 IoCs
  • Redline family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 880-0-0x0000000000220000-0x0000000000270000-memory.dmp
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections