General
-
Target
2604-257-0x0000000000450000-0x0000000000480000-memory.dmp
-
Size
192KB
-
MD5
542ebe49a5f88625598d1b9fec933e92
-
SHA1
1a0151d1e064275ee4042051ec6855511453ef6e
-
SHA256
b725bea89c3769609b30ed2473a24821b8b9375470ee920b8b049fe3894297ba
-
SHA512
2f0cd1675d4bd883cc8121e37d3d10b51a03ee356d79d566c4d29173176b21db0dad134285ea630c90a0388c2a86e5b1d6a12a04c40eedfbd3a66efc603b61be
-
SSDEEP
3072:74sCziRmKPvwL/2rSlllF+HxN6AtjJXOP8e8hB:74HqXwaWlllF+CMXOP
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
smoke
C2
83.97.73.131:19071
Attributes
-
auth_value
aaa47198b84c95fcce9397339e8af9d4
Signatures
-
RedLine payload 1 IoCs
-
Redline family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
2604-257-0x0000000000450000-0x0000000000480000-memory.dmp
Headers
Sections