General
-
Target
1952-55-0x0000000000400000-0x0000000000430000-memory.dmp
-
Size
192KB
-
MD5
e8ebc78cd608cf555e052e187dabcdfc
-
SHA1
3abeaf1c3a6cc29b9d416e803fd5b36d55fb44c1
-
SHA256
5565311ec6f7e7532f0b5158bb3a7a75ed6c6cd4982738f9f9b797b25d4d5710
-
SHA512
5ab6cd69ba991ac510173cffab55f05c79b8ee65504571a61da3b4bd8c7a6e1ac516a2446ba9d8b94426a7e51fa6e9b569521d40f3dc40191fc67cafd5779120
-
SSDEEP
1536:TRH4GkqlVZRGW+Drr7TmHq0WuwGD4hTGqVGbuG+ALhdxbK83wYkv8e8hJ:tHV4/1LQqVSimhdxbKZ8e8hJ
Score
10/10
Malware Config
Extracted
Family
redline
C2
135.181.241.192:4327
Attributes
-
auth_value
a909e2aaecf96137978fea4f86400b9b
Signatures
-
RedLine payload 1 IoCs
-
Redline family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
1952-55-0x0000000000400000-0x0000000000430000-memory.dmp
Headers
Sections