Overview

overview

10

Static

static

1

7cf432dc5b...19.exe

windows7-x64

10

7cf432dc5b...19.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    9e6792c84ed3f9c1d630895ee68d9ab1.bin

  • Size

    235KB

  • Sample

    230213-b5t4lshd4x

  • MD5

    dcb9d72c6d7e143095eb861fc76396b4

  • SHA1

    d91995504fd6171fa9f9a37dda2f3a0e4a9e4988

  • SHA256

    ba645ff23646f35589684c63e56d4e7934c176e0fc8aec4f5e2ba21095a9d5aa

  • SHA512

    66655536177aac9cb18279d6186ab5b6ac5e4317a9eb5653734b39ea6d94f977c59fd427b9a90120c89a970a46564d760994f5c568248db60e944186779a1a89

  • SSDEEP

    3072:V0Xz1h4h22TLbOz+omdeFid0ZRsykzdHG1WIQ0Drz5Dm9nyw1To+ihN95EGFCu16:SxE2QLbiCjQiQh5DrVDwto+cN95JJ14x

Score
10/10
redlinediscoveryinfostealerspywarestealer

Malware Config

Targets

    • Target

      7cf432dc5b771147349e6d62fe318c938266ea7fa35a353884e62366a44bd619.exe

    • Size

      291KB

    • MD5

      9e6792c84ed3f9c1d630895ee68d9ab1

    • SHA1

      662ded8330f15bde2cae79e66a0e2e04046f31f0

    • SHA256

      7cf432dc5b771147349e6d62fe318c938266ea7fa35a353884e62366a44bd619

    • SHA512

      7def0ed74f6621f9a701e85d00e0d333084b1c45b5d9def2f1e5d74732c3391c510b36dab18318522b097e6637bdeea231be11121c149e5ebffb765d1c92af1b

    • SSDEEP

      6144:o9FPJl3DbwgbqBnPkA0fUx9YEzQlMEoToxX:o9bq9eqz+MESm

    Score
    10/10
    redlinediscoveryinfostealerspywarestealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine payload

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks