Overview

overview

10

Static

static

a45b82e930...14.exe

windows7-x64

10

a45b82e930...14.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a45b82e930bd972867e5997938c73614.exe

  • Size

    421KB

  • Sample

    220913-lyck4afce3

  • MD5

    a45b82e930bd972867e5997938c73614

  • SHA1

    2cfa2864d5046c6f99edfec39014011d57abc7af

  • SHA256

    e67a6fdab9d9ce5d88744a0eeb668739c76ac08bf2db915d875d841b2b1b3932

  • SHA512

    82c0a21f327d8e19c020886fc2eb85837ef473ab32cefa83d9b44da303479867e27ebc241074363af7b707ff14e45431d09fb154f883ca76caaa326249afe43e

  • SSDEEP

    6144:5t4bNGiBN0GPjQ1VPjdLPiUUshKx5QxsSL5MOKVH5a0yAO0H/XSzE:M7jePi/shGOaHFyif7

Score
10/10
redline14infostealerspyware

Malware Config

Extracted

Family

redline

Botnet

14

C2

45.144.29.48:8314

Attributes
  • auth_value

    83e082c9cc8b6211da1bcd0dddc8ebc0

Targets

    • Target

      a45b82e930bd972867e5997938c73614.exe

    • Size

      421KB

    • MD5

      a45b82e930bd972867e5997938c73614

    • SHA1

      2cfa2864d5046c6f99edfec39014011d57abc7af

    • SHA256

      e67a6fdab9d9ce5d88744a0eeb668739c76ac08bf2db915d875d841b2b1b3932

    • SHA512

      82c0a21f327d8e19c020886fc2eb85837ef473ab32cefa83d9b44da303479867e27ebc241074363af7b707ff14e45431d09fb154f883ca76caaa326249afe43e

    • SSDEEP

      6144:5t4bNGiBN0GPjQ1VPjdLPiUUshKx5QxsSL5MOKVH5a0yAO0H/XSzE:M7jePi/shGOaHFyif7

    Score
    10/10
    redline14infostealerspyware

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • Accesses cryptocurrency files/wallets, possible credential harvesting

      spyware

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

1
T1081

Discovery

Lateral Movement

Collection

Data from Local System

1
T1005

Exfiltration

Command and Control

Impact

Tasks