Overview

overview

10

Static

static

9617d4eefc...5c.exe

windows7-x64

10

9617d4eefc...5c.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    9617d4eefc2c16ff7587d7a85c1f52d23053e02632e9cfc27e0a5eb84486f05c.exe

  • Size

    317KB

  • Sample

    221127-ye8weahd3x

  • MD5

    d46c47543ab771c8d6bd2d7c9ba853a3

  • SHA1

    b339decb0fd779a0a7c192d321aec1017808e28e

  • SHA256

    9617d4eefc2c16ff7587d7a85c1f52d23053e02632e9cfc27e0a5eb84486f05c

  • SHA512

    e601d8b012d81409005b3b7aa002b2ce4417ae36f0a62f6dba4fdb592f6e730eafb02d1c5adbdc6db800206204b5b30577366e85f8faa3b719ef0dc574917d8f

  • SSDEEP

    6144:3D8VwwJLvjFAFoqe6jv3gB5HFV7n6kSw8rZuge6Bhk4GuRfk:3D8V7XFAFa6jvQBlnxFnl6Tllk

Score
10/10
redlinetesting.v1infostealer

Malware Config

Extracted

Family

redline

Botnet

Testing.v1

C2

185.106.92.111:2510

Attributes
  • auth_value

    336be733d6f6d74b812efad48d422273

Targets

    • Target

      9617d4eefc2c16ff7587d7a85c1f52d23053e02632e9cfc27e0a5eb84486f05c.exe

    • Size

      317KB

    • MD5

      d46c47543ab771c8d6bd2d7c9ba853a3

    • SHA1

      b339decb0fd779a0a7c192d321aec1017808e28e

    • SHA256

      9617d4eefc2c16ff7587d7a85c1f52d23053e02632e9cfc27e0a5eb84486f05c

    • SHA512

      e601d8b012d81409005b3b7aa002b2ce4417ae36f0a62f6dba4fdb592f6e730eafb02d1c5adbdc6db800206204b5b30577366e85f8faa3b719ef0dc574917d8f

    • SSDEEP

      6144:3D8VwwJLvjFAFoqe6jv3gB5HFV7n6kSw8rZuge6Bhk4GuRfk:3D8V7XFAFa6jvQBlnxFnl6Tllk

    Score
    10/10
    redlinetesting.v1infostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine payload

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks