Overview

overview

10

Static

static

1

file.exe

windows7-x64

10

file.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    file

  • Size

    303KB

  • Sample

    230215-mlds3abb5w

  • MD5

    23008ada4756ae40463a109bcae57ac6

  • SHA1

    f303dc6b7dd38ed457d6b2094817767327352048

  • SHA256

    be1c94b37dc4b3a8a721cc26d7515d19d902d0e90b39f03fb1bab9457b5c4652

  • SHA512

    2f770c34e568a0838ea2566682dbbd1d7c953f91b680e3b2a3f12858ebf9a7c07ea7da776c565309dbb7ffba532b7f9891149fa65840232fbcfbeaa269d9910e

  • SSDEEP

    6144:9dukMLoz7JFij9VWO94W0OBX2iGz7jJCWfS2S4jcJogsyXtiI/s:9dP7J0VWOrGXBfS2S9JTZj

Score
10/10
redlinediscoveryinfostealerspywarestealer

Malware Config

Targets

    • Target

      file

    • Size

      303KB

    • MD5

      23008ada4756ae40463a109bcae57ac6

    • SHA1

      f303dc6b7dd38ed457d6b2094817767327352048

    • SHA256

      be1c94b37dc4b3a8a721cc26d7515d19d902d0e90b39f03fb1bab9457b5c4652

    • SHA512

      2f770c34e568a0838ea2566682dbbd1d7c953f91b680e3b2a3f12858ebf9a7c07ea7da776c565309dbb7ffba532b7f9891149fa65840232fbcfbeaa269d9910e

    • SSDEEP

      6144:9dukMLoz7JFij9VWO94W0OBX2iGz7jJCWfS2S4jcJogsyXtiI/s:9dP7J0VWOrGXBfS2S9JTZj

    Score
    10/10
    redlinediscoveryinfostealerspywarestealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine payload

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks