General
-
Target
1648-86-0x0000000000400000-0x0000000000450000-memory.dmp
-
Size
320KB
-
MD5
4c28d1cfd2962085ced3f99c4a6d1c57
-
SHA1
4011ddcdd9ee82b77649cd25be0a4ac1c998424b
-
SHA256
3fd550a020a352908828fe743fb43c3abb31c69f6b6d488da42c75065c693a16
-
SHA512
e6c4d8d856b81640e65b80ba911fcd761c8e828ead829a946a9c6b5b1a7d66da5c6cdba51dcffe1fcaaf9d20947d1c5756c05d0ebe261d602c8a2ed932112ba4
-
SSDEEP
3072:oqFFrqwIOG0byxh3GmjLf/90LX0veY8lYHJTZCfHIecZqf7D34NeqiOLCbBOV:7BIOGV39OXXlwJTZ87cZqf7DI3L
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
LiveTraffic
C2
20.218.68.91:7690
Signatures
-
RedLine payload 1 IoCs
-
Redline family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
1648-86-0x0000000000400000-0x0000000000450000-memory.dmp
Headers
Sections