Overview

overview

10

Static

static

file.exe

windows7-x64

10

file.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    file.exe

  • Size

    365KB

  • Sample

    221116-t23wfsca88

  • MD5

    88ec2c8cb4672d289b98287b0190a6d2

  • SHA1

    741d70aff1b2ea4f8ea28ebb256ccdceb67efd53

  • SHA256

    8fafee48316848ec1b12141348c06c575b3c9a64d81ca8244f3a3cd883d26de9

  • SHA512

    f566a015efadb710836488124df42b08d9e7663d706e05a5c88c69ea187011b7d79256221c8f84f5bfc3a55c6c2d8effd91d7dbf8f5ecb98fb34083b6050feea

  • SSDEEP

    6144:fQ9LC5+ca1f8isriFJSsD5fYpHnqzNrB/KP6bcTXY:fi24ca10i9JSslknsT/iV

Score
10/10
redlineneruzinfostealer

Malware Config

Extracted

Family

redline

Botnet

neruz

C2

193.106.191.27:47242

Attributes
  • auth_value

    0169a8759f3c9be473f782b96a6ff704

Targets

    • Target

      file.exe

    • Size

      365KB

    • MD5

      88ec2c8cb4672d289b98287b0190a6d2

    • SHA1

      741d70aff1b2ea4f8ea28ebb256ccdceb67efd53

    • SHA256

      8fafee48316848ec1b12141348c06c575b3c9a64d81ca8244f3a3cd883d26de9

    • SHA512

      f566a015efadb710836488124df42b08d9e7663d706e05a5c88c69ea187011b7d79256221c8f84f5bfc3a55c6c2d8effd91d7dbf8f5ecb98fb34083b6050feea

    • SSDEEP

      6144:fQ9LC5+ca1f8isriFJSsD5fYpHnqzNrB/KP6bcTXY:fi24ca10i9JSslknsT/iV

    Score
    10/10
    redlineneruzinfostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks