General
-
Target
2792-12-0x0000000000400000-0x0000000000452000-memory.dmp
-
Size
328KB
-
MD5
d0ce50f379456d663855312f46be46c7
-
SHA1
723de2fa4cd8da2721fee1d67c948946fdb52157
-
SHA256
6638f9a3703a288076c49929fe42cbba1ae1adec2f1ba6d83db2e9571584393c
-
SHA512
3ef884221f1ee006e0341a185e11d7b5d2d35a20b44ce2276efa44a0dbb5cac16481262d273c53b042fdfb032dddf93aa7667055959d6bec19b4f54e3798d7b0
-
SSDEEP
3072:OcZqf7D34Hp/0+mAgkygC+QQEgefB1fA0PuTVAtkxzZ3RgeqiOL2bBOA:OcZqf7DIJnY+joB1fA0GTV8kPgL
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
success
C2
212.162.149.159:37004
Signatures
-
RedLine payload 1 IoCs
-
Redline family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
2792-12-0x0000000000400000-0x0000000000452000-memory.dmp
Headers
Sections