Overview

overview

10

Static

static

d944eaaf82...e8.exe

windows7-x64

10

d944eaaf82...e8.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d944eaaf828beaf9c7fdd48a69964911439a8d197e43468f59b502691d7105e8.exe

  • Size

    316KB

  • Sample

    220908-fwqgaadfg3

  • MD5

    20a866f66079d8f4c7ea80b320196087

  • SHA1

    4110702b42a7f96ce591c842706d9b7d2f697453

  • SHA256

    d944eaaf828beaf9c7fdd48a69964911439a8d197e43468f59b502691d7105e8

  • SHA512

    6379dfebeaf815c317c2b0f7f5a43e41f101498dc1225555ce0413c027d7962fdd2e99d821d45365560d85a29f23c931ec3852f56e4046f9016ef378efe3ccd4

  • SSDEEP

    6144:VUIEEjZxyqXk/wpgcqkCoX8nSY6gKzgB1pUMo37m:VD7xY/wpgcqAXKSvHzAUMy

Score
10/10
redline20220825infostealer

Malware Config

Extracted

Family

redline

Botnet

20220825

C2

80.87.192.249:16640

Attributes
  • auth_value

    27aa40395151b318c78ecf2834d1a5a0

Targets

    • Target

      d944eaaf828beaf9c7fdd48a69964911439a8d197e43468f59b502691d7105e8.exe

    • Size

      316KB

    • MD5

      20a866f66079d8f4c7ea80b320196087

    • SHA1

      4110702b42a7f96ce591c842706d9b7d2f697453

    • SHA256

      d944eaaf828beaf9c7fdd48a69964911439a8d197e43468f59b502691d7105e8

    • SHA512

      6379dfebeaf815c317c2b0f7f5a43e41f101498dc1225555ce0413c027d7962fdd2e99d821d45365560d85a29f23c931ec3852f56e4046f9016ef378efe3ccd4

    • SSDEEP

      6144:VUIEEjZxyqXk/wpgcqkCoX8nSY6gKzgB1pUMo37m:VD7xY/wpgcqAXKSvHzAUMy

    Score
    10/10
    redline20220825infostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine payload

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks