redline | 2688-71-0x0000000000400000-0x0000000000450000-memory[.]dmp

General

Target

2688-71-0x0000000000400000-0x0000000000450000-memory.dmp
Size

320KB
MD5

1d1059f571a13ff586fa6cc83628099a
SHA1

1d0edb4b8e3092800371fda4aa78f174d24a9d39
SHA256

0b83095fd4dba2b70a63c3dceac99474aca5bec697db54a6a2ef2b1508879568
SHA512

3e0014eb25521422e845f69a5c00294ba7ef9ff4f9e2e36c470dd1c7269149b6d7a3ce857e8a3b9c04359f9e26ed8e9519a9e2a7b2969e315e2b362e5853d650
SSDEEP

3072:lqFFrqwIOGLSy+/YtyVFNG+810+Yj2GtwhdukTZbMHIXcZqf7D34:sBIOGlIG3dBTZYScZqf7DI

Score

10^/10

Family

redline

Botnet

LogsDiller Cloud (TG: @logsdillabot)

C2

5.42.65.63:14707

RedLine payload 1 IoCs

resource	yara_rule
sample	family_redline

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2688-71-0x0000000000400000-0x0000000000450000-memory.dmp