redline | a9963528ae516477d9441d7ed9e9b28ea33c055661a8cafa4b6d541e14317e7e | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10_x64

Sharing

General

Target

a9963528ae516477d9441d7ed9e9b28ea33c055661a8cafa4b6d541e14317e7e
Size

11KB
Sample

210822-v2g9xak126
MD5

038bd2ee88ff4c4990fc6328229b7702
SHA1

7c80698a230be3c6733ded3ee7622fe356c3cb7d
SHA256

a9963528ae516477d9441d7ed9e9b28ea33c055661a8cafa4b6d541e14317e7e
SHA512

6dac9efbecbd525129ce56d9f0f620e101afca8e91e23c48b6f377711d3a9b97fac1d38f8de8c57b73e309b57ebaac7bf152b207c166c0a6ce3eac2b49cac03e

Score

10^/10

redline ayrelia1_installs infostealer suricata

Static task

static1

Behavioral task

behavioral1

Sample

a9963528ae516477d9441d7ed9e9b28ea33c055661a8cafa4b6d541e14317e7e.exe

Resource

win10v20210408

redline ayrelia1_installs infostealer suricata

windows10_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

redline

Botnet

Ayrelia1_installs

C2

77.83.175.169:11490

Targets

- Target
  
  a9963528ae516477d9441d7ed9e9b28ea33c055661a8cafa4b6d541e14317e7e
- Size
  
  11KB
- MD5
  
  038bd2ee88ff4c4990fc6328229b7702
- SHA1
  
  7c80698a230be3c6733ded3ee7622fe356c3cb7d
- SHA256
  
  a9963528ae516477d9441d7ed9e9b28ea33c055661a8cafa4b6d541e14317e7e
- SHA512
  
  6dac9efbecbd525129ce56d9f0f620e101afca8e91e23c48b6f377711d3a9b97fac1d38f8de8c57b73e309b57ebaac7bf152b207c166c0a6ce3eac2b49cac03e
Score

10^/10

redline ayrelia1_installs infostealer suricata
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine Payload
- suricata: ET MALWARE Terse alphanumeric executable downloader high likelihood of being hostile
  suricata: ET MALWARE Terse alphanumeric executable downloader high likelihood of being hostile
  suricata
- Downloads MZ/PE file
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

redlineayrelia1_installsinfostealersuricata

© 2018-2024

Terms | Privacy