redline | b58d2295d057ab39c320a4e84bdc756aa6d03aef2c0f0baa3801fc9a3d08ae46 | Triage

Sharing

General

Target

45cd9f707a0d3ea09cad776bd662e86bf227b3ed807888ec4d9aa34694a391c0
Size

335KB
Sample

221116-vz6p1acb77
MD5

fed0025587deec659585145886291325
SHA1

ff908349a3448323c1602305ac420012ad7f1de7
SHA256

b58d2295d057ab39c320a4e84bdc756aa6d03aef2c0f0baa3801fc9a3d08ae46
SHA512

802bfde35edcb721adccfa38dc2c88678be9a67d8150e295598e985eb41e03a72103f6209b7d45e49371822e6b190f9a665d01586cfea44b5b0464989357da51
SSDEEP

6144:EzB4tpNPj9rkVYxANQvlOeWgAXP0S2iynnKO+4ZSFK0K5GcYbZ+aJ:OB4rVj9rkqGNQNCgAXsVnnKSZWTKe1+s

Score

10^/10

redline neruz infostealer

Malware Config

Extracted

Family

redline

Botnet

neruz

C2

193.106.191.27:47242

Attributes

auth_value
0169a8759f3c9be473f782b96a6ff704

Targets

- Target
  
  45cd9f707a0d3ea09cad776bd662e86bf227b3ed807888ec4d9aa34694a391c0
- Size
  
  440KB
- MD5
  
  4036b4bb539caeffec638607e50ec42a
- SHA1
  
  2ed35febc646215c45bf77da2709fc5f973bb821
- SHA256
  
  45cd9f707a0d3ea09cad776bd662e86bf227b3ed807888ec4d9aa34694a391c0
- SHA512
  
  83601363f7370c64a97f6f88864b851b19f5b2b2ec43b6415a427cf2cc13e6795c20145f0403a616b990b6498eabd78533494151a310edbe64da76a1d836373b
- SSDEEP
  
  6144:oCI3LIboOXlX7i1cNQvlOeWggXP0I2iynFKe+4tVHyEn2E1a:oCS8boOXh7i+NQNCggXsPnnoCtYUv
Score

10^/10

redline neruz infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

redlineneruzinfostealer

behavioral2