redline | a6041dddee41fdb6417fac38903febee6806df4f7e660168960ec5c488a1e689 | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-2004-x64

Sharing

General

Target

a6041dddee41fdb6417fac38903febee6806df4f7e660168960ec5c488a1e689
Size

770KB
Sample

221003-lfn66shdbl
MD5

87344d11de607917dd2642ea449fce22
SHA1

f525d06c5588a3b0735c4fc58ba5eaa118e777e1
SHA256

a6041dddee41fdb6417fac38903febee6806df4f7e660168960ec5c488a1e689
SHA512

cc833953f8dc916209ac45634b1b3199f3037dcea0fbc1c7c7ebcd5c12500f0a0e9d409d97821273805270266125a2a60cddcd5e5dc8c992fccdbc3709799449
SSDEEP

12288:7Os17OgXMh/pz8VSgrdMxDemo+7mtih+rqG7K4HTN:7R1qgXMh6M51o+7m4Aq

Score

10^/10

redline sirus infostealer

Static task

static1

Behavioral task

behavioral1

Sample

a6041dddee41fdb6417fac38903febee6806df4f7e660168960ec5c488a1e689.exe

Resource

win10v2004-20220812-en

redline sirus infostealer

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Extracted

Family

redline

Botnet

sirus

C2

147.124.223.126:4444

Targets

- Target
  
  a6041dddee41fdb6417fac38903febee6806df4f7e660168960ec5c488a1e689
- Size
  
  770KB
- MD5
  
  87344d11de607917dd2642ea449fce22
- SHA1
  
  f525d06c5588a3b0735c4fc58ba5eaa118e777e1
- SHA256
  
  a6041dddee41fdb6417fac38903febee6806df4f7e660168960ec5c488a1e689
- SHA512
  
  cc833953f8dc916209ac45634b1b3199f3037dcea0fbc1c7c7ebcd5c12500f0a0e9d409d97821273805270266125a2a60cddcd5e5dc8c992fccdbc3709799449
- SSDEEP
  
  12288:7Os17OgXMh/pz8VSgrdMxDemo+7mtih+rqG7K4HTN:7R1qgXMh6M51o+7m4Aq
Score

10^/10

redline sirus infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

redlinesirusinfostealer

© 2018-2024

Terms | Privacy