Overview

overview

10

Static

static

10

0x00060000...55.exe

windows7-x64

10

0x00060000...55.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0x000600000000b2d2-55.dat

  • Size

    137KB

  • Sample

    221115-ghkjjsbe6s

  • MD5

    adc399546530652e758999013f00367b

  • SHA1

    60a843608baf23cc7789c68fc426f20b6dc29b41

  • SHA256

    54d46f61cafb33d18862e4045a20d3dd802db35445be84c255bb62a50f5fcb65

  • SHA512

    4dcc9a01e98aac84d44d3aa604809438903f2a4d004e01f07ce54a2ac01c55091015567019648c825140a33b4653b38ba9bf13ef1a9ef314c33cb0f18e1c5ad6

  • SSDEEP

    3072:pYO/ZMTFFh9owLZQxeKkg+o9KqVnzDF9y3XxhfSS5N:pYMZMBFh9oSQeg+o9KyuHxh

Score
10/10
redline5infostealer

Malware Config

Extracted

Family

redline

Botnet

5

C2

95.217.102.105:23728

Attributes
  • auth_value

    296895f62ea120f06c6fcec4dcc5ed5b

Targets

    • Target

      0x000600000000b2d2-55.dat

    • Size

      137KB

    • MD5

      adc399546530652e758999013f00367b

    • SHA1

      60a843608baf23cc7789c68fc426f20b6dc29b41

    • SHA256

      54d46f61cafb33d18862e4045a20d3dd802db35445be84c255bb62a50f5fcb65

    • SHA512

      4dcc9a01e98aac84d44d3aa604809438903f2a4d004e01f07ce54a2ac01c55091015567019648c825140a33b4653b38ba9bf13ef1a9ef314c33cb0f18e1c5ad6

    • SSDEEP

      3072:pYO/ZMTFFh9owLZQxeKkg+o9KqVnzDF9y3XxhfSS5N:pYMZMBFh9oSQeg+o9KyuHxh

    Score
    10/10
    redline5infostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine payload

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks