General
-
Target
2156-54-0x0000000000260000-0x0000000000290000-memory.dmp
-
Size
192KB
-
MD5
91bfd344807a5a643ae6433f3968d0d7
-
SHA1
347b21517d272a055a8b26da2cea59539c5076e5
-
SHA256
0b057b2e4e4a8119680a077a2d5167e090ef844c04b9660c59cd02012d24c781
-
SHA512
20a8331ca475ca6ac799797b0c59c506663c6485142f7359ae43a348c9427608123b0984017429aed682af3a12dd32928214b63550b9111954c55805674d7b94
-
SSDEEP
3072:PtE62xyQ6d+VeXdxNLgVK880EHh8e8hK:lEmOA9S80EHh
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
andre
C2
77.91.124.49:19073
Attributes
-
auth_value
8e5522dc6bdb7e288797bc46c2687b12
Signatures
-
RedLine payload 1 IoCs
-
Redline family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
2156-54-0x0000000000260000-0x0000000000290000-memory.dmp
Headers
Sections