Overview

overview

10

Static

static

10

2036-58-0x...ry.exe

windows7_x64

10

2036-58-0x...ry.exe

windows10-2004_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2036-58-0x0000000002530000-0x0000000002560000-memory.dmp

  • Size

    192KB

  • Sample

    220714-smwcdscab5

  • MD5

    d282e8f168a689b84959c189ecc96ac1

  • SHA1

    2f5e090396fdeb6cc273adbd412967e9e3cd5cd9

  • SHA256

    6f9bdebc40579cb08158b6736edcea3af09432478db58c60557345c29153c77b

  • SHA512

    b3fa4be4e33536700a372ebfb9caf2fd1347ceb61449c7aa9464fec279a7a30289a15bb8361798f26bfe03d4d016602be65928de803f08085f9bb0377eb27b75

Score
10/10
redlinemxinfostealer

Malware Config

Extracted

Family

redline

Botnet

mx

C2

193.106.191.222:23196

Attributes
  • auth_value

    8cfa634189948115f1f5e1900e4b66b6

Targets

    • Target

      2036-58-0x0000000002530000-0x0000000002560000-memory.dmp

    • Size

      192KB

    • MD5

      d282e8f168a689b84959c189ecc96ac1

    • SHA1

      2f5e090396fdeb6cc273adbd412967e9e3cd5cd9

    • SHA256

      6f9bdebc40579cb08158b6736edcea3af09432478db58c60557345c29153c77b

    • SHA512

      b3fa4be4e33536700a372ebfb9caf2fd1347ceb61449c7aa9464fec279a7a30289a15bb8361798f26bfe03d4d016602be65928de803f08085f9bb0377eb27b75

    Score
    10/10
    redlinemxinfostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks