redline | 5bbcd9857763e76378a92faf966bdeaaac1106bfd79c1f0619afb176193f0fa9 | Triage

Submit
Reports

Overview

overview

Static

static

ledarx_dump1.ex.exe

windows7_x64

ledarx_dump1.ex.exe

windows10_x64

Sharing

General

Target

ledarx_dump1.ex
Size

189KB
Sample

210916-tg1klagfal
MD5

c20af74f9985ef3e300d9b10c46c7f5c
SHA1

dee28d27fb7e07ca504534eeb48199d938024f29
SHA256

5bbcd9857763e76378a92faf966bdeaaac1106bfd79c1f0619afb176193f0fa9
SHA512

24e573447ff7d79441eb18b7423540db06dca4731c68c96aacf1d9c2437842a0983689049fc95076b35fb39c49aca70ac30edec97e573e8426f190175d93f611

Score

10^/10

redline ruz infostealer

Static task

static1

Behavioral task

behavioral1

Sample

ledarx_dump1.ex.exe

Resource

win7v20210408

redline ruz infostealer

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

ledarx_dump1.ex.exe

Resource

win10-en

redline ruz infostealer

windows10_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

redline

Botnet

RUZ

C2

sandedean.xyz:80

Targets

- Target
  
  ledarx_dump1.ex
- Size
  
  189KB
- MD5
  
  c20af74f9985ef3e300d9b10c46c7f5c
- SHA1
  
  dee28d27fb7e07ca504534eeb48199d938024f29
- SHA256
  
  5bbcd9857763e76378a92faf966bdeaaac1106bfd79c1f0619afb176193f0fa9
- SHA512
  
  24e573447ff7d79441eb18b7423540db06dca4731c68c96aacf1d9c2437842a0983689049fc95076b35fb39c49aca70ac30edec97e573e8426f190175d93f611
Score

10^/10

redline ruz infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine Payload
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

redlineruzinfostealer

behavioral2

redlineruzinfostealer

© 2018-2024

Terms | Privacy