Overview

overview

10

Static

static

Launcher B....1.scr

windows7-x64

10

Launcher B....1.scr

windows10-1703-x64

10

Launcher B....1.scr

windows10-2004-x64

1

updater.exe

windows7-x64

10

updater.exe

windows10-1703-x64

10

updater.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    NFT META-WORLD PROJECT v.3.1.1.rar

  • Size

    954KB

  • Sample

    221008-nqgk7aefe2

  • MD5

    62b5d38086f585542ead7400f0ec1f28

  • SHA1

    4556cd471f650d3c835fc3ee9479ac2055c934f2

  • SHA256

    e423d4415a236376fe97f7c33f090b9f792cd177d488405d7b0b2b1f8653adfc

  • SHA512

    ec07ec66b2c8ea199bba3346cd01d0d7a6ebb1a2725675ac9c696a30e744d0cfffe17db541e09eeadd2157386f037fcdebea4188a263ec9f42b60327ed7f449d

  • SSDEEP

    12288:H4BgEtuXwKp1NQpO7zsKh+UtNdJ3xieLpeWJjLjrvU:yVtOwW1ZXTD3HeWxU

Score
10/10
redline20.08proinfostealer

Malware Config

Extracted

Family

redline

Botnet

20.08

C2

77.73.134.5:30812

Attributes
  • auth_value

    f1c229fd521c0dd5174d96bfc5837085

Extracted

Family

redline

Botnet

pro

C2

77.73.134.5:30812

Attributes
  • auth_value

    e20e8d1492a37ff0cfab3cd3f6c60362

Targets

    • Target

      Launcher Beta 3.1.1.scr

    • Size

      715.0MB

    • MD5

      1034a8f4ecfe2ad44d9be194e1090b15

    • SHA1

      a510c898a834defe5584451f8e0f9c882cf50908

    • SHA256

      acf4a657215fc0ad1ed8169dc3200e73233286963048fb9a3af67f7138d55fce

    • SHA512

      7974a63b2d17c6a31c8f6be484b93bbcc053481beb8ca55bd265b7ecaf662583f3b884b051638851cb78d773661c62416d97c72b1cda24b9d13aaa52ec8bdaf4

    • SSDEEP

      12288:aMuwdGCvc+2nRjZpzkbI5SHQBoCCVSpXc0lLXprDQPVOSW6:9uwdVc+2nL56HcXpwPVd

    Score
    10/10
    redline20.08infostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline
    behavioral1behavioral2behavioral3

    • Target

      updater.pif

    • Size

      307.7MB

    • MD5

      d6fab4ab46e4a55ae21934bd4cd0f0f5

    • SHA1

      8b1840c577ef79dc602b4be2150ea24fc4d720ad

    • SHA256

      99d6e93e738655a059864aff66da583dbf9c71e0b9cdc88691c5c96777f50ca5

    • SHA512

      e32049226f10e374c01599ac09cd3ffc6ddb911d7eceda8e49d249e8229a1ac5bd4af530172190740b60575f62bcc2c48c9d11d9330334e2704f9b53140c8f45

    • SSDEEP

      24576:+XSskXOmCdwA4MI3mDd1xP/hMbfVduPQz3ZW:+XSnEVb/2dduKA

    Score
    10/10
    redlineproinfostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline
    behavioral4behavioral5behavioral6

MITRE ATT&CK Matrix

Tasks