redline | b7a76b08374f798e8b2b64a607531f32e78e104460d18a6c9013240b4606674c | Triage

Sharing

General

Target

file
Size

386KB
Sample

221025-vv8c2adcgn
MD5

065102cc1c8f0a3d9b34425ad3a605e3
SHA1

b4c441a6b262533480254a6ece2d927c4fd7f9db
SHA256

b7a76b08374f798e8b2b64a607531f32e78e104460d18a6c9013240b4606674c
SHA512

4b31e533ee23a37ac3fed580c436c2bb952536e82fb04d1c985b9dd64b2510f3eab5dccacb5f1b44b8e25cc5ff91a4c40436e70c35bc77aecbd02d66fb664ac2
SSDEEP

6144:S8Z4ITLLSwjv/NcjRlo/ZqzqHcY8zAzyposns3ZuC7epobfqpWmnv:Sc+wjv/Nc1loRNcJAzyoss32KfqpWI

Score

10^/10

redline dzkey infostealer

Malware Config

Extracted

Family

redline

Botnet

dzkey

C2

193.106.191.19:47242

Attributes

auth_value
52a449fd61ad73c3abc266d47c699ceb

Targets

- Target
  
  file
- Size
  
  386KB
- MD5
  
  065102cc1c8f0a3d9b34425ad3a605e3
- SHA1
  
  b4c441a6b262533480254a6ece2d927c4fd7f9db
- SHA256
  
  b7a76b08374f798e8b2b64a607531f32e78e104460d18a6c9013240b4606674c
- SHA512
  
  4b31e533ee23a37ac3fed580c436c2bb952536e82fb04d1c985b9dd64b2510f3eab5dccacb5f1b44b8e25cc5ff91a4c40436e70c35bc77aecbd02d66fb664ac2
- SSDEEP
  
  6144:S8Z4ITLLSwjv/NcjRlo/ZqzqHcY8zAzyposns3ZuC7epobfqpWmnv:Sc+wjv/Nc1loRNcJAzyoss32KfqpWI
Score

10^/10

redline dzkey infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

redlinedzkeyinfostealer

behavioral2