General
-
Target
2376-54-0x00000000003C0000-0x00000000003F0000-memory.dmp
-
Size
192KB
-
MD5
d55232bf0d3be7304b8c811a5a54ea1a
-
SHA1
edf4ed6050fb0b3bda2519a2083bb6b98ec0aae3
-
SHA256
6ddb362490b981739123707d1b4228fc3bdba8a887c70b691e92b85218010d21
-
SHA512
20296d4bdd4e7e3964c446ed252ac6de87f5e633710bb88be9b4d6fa99d6b50443f5c526a6336d05302dbcb01d27916f6a3a940d3af0940d973926a2132134ea
-
SSDEEP
3072:etE62xyQ6d+VeXdxNLgVK880EHT8e8hK:SEmOA9S80EHT
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
andre
C2
77.91.124.49:19073
Attributes
-
auth_value
8e5522dc6bdb7e288797bc46c2687b12
Signatures
-
RedLine payload 1 IoCs
-
Redline family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
2376-54-0x00000000003C0000-0x00000000003F0000-memory.dmp
Headers
Sections