Overview

overview

10

Static

static

malware_sm...75.exe

windows7-x64

10

malware_sm...75.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    malware_smoke_3333644975

  • Size

    390KB

  • Sample

    221004-mxd8zaahgr

  • MD5

    ae17f41bdf04a178eca33b352304aafa

  • SHA1

    8f24baaeb337f44959e205ed88fadabd3565e603

  • SHA256

    217911afc2c80d00f08f0702deb7a456f175fa7a7893d36502e0fe5f3c8b990e

  • SHA512

    17de04bfcf676f744875c204a35fe72abb53353fab1bee4773af25d14ec9f9135e2c3fb5033421d61f6cfd9fa4edd733cdb3ba2a5744f3f805789faebbaaa643

  • SSDEEP

    6144:bt6aCtqY2xa0E9iAsbcCF4YCbdOGx6/iYBBV5pOhi0chqCjM:R6rqY2xlE9tsFqYeOu6qYfpuinM

Score
10/10
redline170infostealer

Malware Config

Extracted

Family

redline

Botnet

170

C2

193.106.191.196:44310

Attributes
  • auth_value

    53e4e07dd3f74dc02e33a316c82edf3d

Targets

    • Target

      malware_smoke_3333644975

    • Size

      390KB

    • MD5

      ae17f41bdf04a178eca33b352304aafa

    • SHA1

      8f24baaeb337f44959e205ed88fadabd3565e603

    • SHA256

      217911afc2c80d00f08f0702deb7a456f175fa7a7893d36502e0fe5f3c8b990e

    • SHA512

      17de04bfcf676f744875c204a35fe72abb53353fab1bee4773af25d14ec9f9135e2c3fb5033421d61f6cfd9fa4edd733cdb3ba2a5744f3f805789faebbaaa643

    • SSDEEP

      6144:bt6aCtqY2xa0E9iAsbcCF4YCbdOGx6/iYBBV5pOhi0chqCjM:R6rqY2xlE9tsFqYeOu6qYfpuinM

    Score
    10/10
    redline170infostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks