Overview

overview

10

Static

static

file.exe

windows7-x64

10

file.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    file.exe

  • Size

    365KB

  • Sample

    221116-t78nwsga7t

  • MD5

    a35f212ddc57834ed6207c050f39612f

  • SHA1

    033ecc15977c58fb28341594deb446dc792eced0

  • SHA256

    10dc0913e4365d730ee103eeac5c8039b7be1c33c4e48f2ea1840534e4edbc2c

  • SHA512

    39048e098072e8fe775d84f73e12b3bff1de9010ffac9ed9864231e302c3d398c05dbacbe73f18992153a0194f08983e70154f26596ed1361597d95476951fd6

  • SSDEEP

    6144:mddhVLeE4l8OMCQs3KlES+yEBywGACu10bB6MLTJPuD1j/lKXI6Z:mbn4l85+y8XRIb4MLTtuD1j9

Score
10/10
redlineneruzinfostealer

Malware Config

Extracted

Family

redline

Botnet

neruz

C2

193.106.191.27:47242

Attributes
  • auth_value

    0169a8759f3c9be473f782b96a6ff704

Targets

    • Target

      file.exe

    • Size

      365KB

    • MD5

      a35f212ddc57834ed6207c050f39612f

    • SHA1

      033ecc15977c58fb28341594deb446dc792eced0

    • SHA256

      10dc0913e4365d730ee103eeac5c8039b7be1c33c4e48f2ea1840534e4edbc2c

    • SHA512

      39048e098072e8fe775d84f73e12b3bff1de9010ffac9ed9864231e302c3d398c05dbacbe73f18992153a0194f08983e70154f26596ed1361597d95476951fd6

    • SSDEEP

      6144:mddhVLeE4l8OMCQs3KlES+yEBywGACu10bB6MLTJPuD1j/lKXI6Z:mbn4l85+y8XRIb4MLTtuD1j9

    Score
    10/10
    redlineneruzinfostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks