General
-
Target
2260-980-0x0000000000400000-0x000000000041E000-memory.dmp
-
Size
120KB
-
MD5
3faf9d141b41071f62dbb36a9635eaae
-
SHA1
7665a60cbca037f811bc8f2f794ab884a50f8f6e
-
SHA256
eba5eeb427ce3af0940433b1144cd0cbc483f99ff87e004bf0cfab25bdd9dee5
-
SHA512
816848f4e2493019e84465a4ad19a51a552477d782604ee2e8670494b4f2f23c49234deb4e013742a6a8cd386ebd0c93ac37e89411fcf4ff133613f4c30fc808
-
SSDEEP
1536:0qs+XqrzWBlbG6jejoigI343Ywzi0Zb78ivombfexv0ujXyyed2l3tmulgS6pY:y0gzWHY3+zi0ZbYe1g0ujyzd5Y
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
cheat
C2
82.147.85.198:9180
Signatures
-
RedLine payload 1 IoCs
-
Redline family
-
SectopRAT payload 1 IoCs
-
Sectoprat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
2260-980-0x0000000000400000-0x000000000041E000-memory.dmp
Headers
Sections