redline | 2416-0-0x00000000000E0000-0x0000000000130000-memory[.]dmp

General

Target

2416-0-0x00000000000E0000-0x0000000000130000-memory.dmp
Size

320KB
MD5

93d03f3d28dff84f2fc8f051e1a0930c
SHA1

efb6a374fb1be0e82d0844c87fc34dcfef620fc6
SHA256

ce337d6d043d3c1bc218ccae7e04382659485584d651badf21e04cf634ccb9de
SHA512

cca81289030b076cb8593df31c001430873cec577660998ffa83cb2ce3625a2bd12b1b3d8ad90f94f89ae5e1bba66ab599a7ca0c8a7d152e57604c5de524d9c7
SSDEEP

3072:kqFFrqwIOGYZyzca1p8oaGozkv6i6Z6lfqJYZnfHglcZqf7D34teqiOLCbBOn:PBIOGPYGozYlSJYZfIcZqf7DIXL

Score

10^/10

Family

redline

Botnet

STONE ISLAND

C2

207.246.120.23:8140

RedLine payload 1 IoCs

Processes:

resource yara_rule

sample family_redline
Redline family
redline

resource	yara_rule
sample	family_redline

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
2416-0-0x00000000000E0000-0x0000000000130000-memory.dmp