Overview

overview

10

Static

static

5fdc261787...57.exe

windows7-x64

10

5fdc261787...57.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5fdc2617875c1f801e0695138815af1955bf2cb3653980da7d36b8d22774fb57

  • Size

    426KB

  • Sample

    221012-tjmfraaff2

  • MD5

    2022e69d606c6d5a44139ae18c3aa47f

  • SHA1

    15df5fe77183ab65dc8ae838ed2cea0d47bb11d8

  • SHA256

    5fdc2617875c1f801e0695138815af1955bf2cb3653980da7d36b8d22774fb57

  • SHA512

    9c3ed87e2eba2b4dc21d386f4f80dc7ecba83ac11991245232ae467152b56aad0c92d8e39b3924a4e80d3c9049621731a990cea49c8d869a773b1790cb232282

  • SSDEEP

    3072:bUUuHu+dhGw9hcOAoGzJGNbPzaXKvFQxoff9al9K8vepP6efXKjf0KSsxyI8q4Cc:quxJGxbIbepisEvxyI6m

Score
10/10
redline20220825infostealer

Malware Config

Extracted

Family

redline

Botnet

20220825

C2

80.87.192.249:16640

Attributes
  • auth_value

    27aa40395151b318c78ecf2834d1a5a0

Targets

    • Target

      5fdc2617875c1f801e0695138815af1955bf2cb3653980da7d36b8d22774fb57

    • Size

      426KB

    • MD5

      2022e69d606c6d5a44139ae18c3aa47f

    • SHA1

      15df5fe77183ab65dc8ae838ed2cea0d47bb11d8

    • SHA256

      5fdc2617875c1f801e0695138815af1955bf2cb3653980da7d36b8d22774fb57

    • SHA512

      9c3ed87e2eba2b4dc21d386f4f80dc7ecba83ac11991245232ae467152b56aad0c92d8e39b3924a4e80d3c9049621731a990cea49c8d869a773b1790cb232282

    • SSDEEP

      3072:bUUuHu+dhGw9hcOAoGzJGNbPzaXKvFQxoff9al9K8vepP6efXKjf0KSsxyI8q4Cc:quxJGxbIbepisEvxyI6m

    Score
    10/10
    redline20220825infostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine payload

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks