Overview

overview

10

Static

static

1

8bb2f1b6ab...0e.exe

windows7-x64

10

8bb2f1b6ab...0e.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    8bb2f1b6ab119fe6fc0293fa4e325c01dbdd79a5dcb2b73db5d151217dba7c0e.zip

  • Size

    257KB

  • Sample

    230308-qblbyahh81

  • MD5

    168681b51b4a464b563cecce7822e40f

  • SHA1

    ee269fa40fce0a0e5e5dbc3187fd602a386a99a7

  • SHA256

    4aa14e61b9acc3dff5c01b45337744f0e22683c36122034bdd861562588c2ea7

  • SHA512

    8594837b4bfed3b85aa8c26277e82892bedb1b0f101339819ecdd0937424c8e8c40b9868c677be9e06b32552a4942f73ead7028183f8b61bd5368ecde4302b94

  • SSDEEP

    6144:lZrJ05lVgWm8BY/BgxO2C+3sV0UcvRlwNy34/sYszy:lZl05tXBQ6xf3C0nZ2YxW

Score
10/10
redlinefudinfostealer

Malware Config

Extracted

Family

redline

Botnet

fud

C2

193.233.20.27:4123

Attributes
  • auth_value

    cddc991efd6918ad5321d80dac884b40

Targets

    • Target

      8bb2f1b6ab119fe6fc0293fa4e325c01dbdd79a5dcb2b73db5d151217dba7c0e.exe

    • Size

      379KB

    • MD5

      078594e2ec8f1b2481d493ca8b67af44

    • SHA1

      d961fe2be92902c074b04272f277320fa994490a

    • SHA256

      8bb2f1b6ab119fe6fc0293fa4e325c01dbdd79a5dcb2b73db5d151217dba7c0e

    • SHA512

      0d6610de14191c8f5491a80cc8f50fc70011636e35b6b30295abcba780879b882e70dbb9ca33be81ad697bf1cdee7b68a1474b20968db6fc1d71e2e8cce227c6

    • SSDEEP

      6144:deG3L85kZb5aR5MO+eul+xtlVsQbz7DptVuBTKreZv/74DYTP4eUM:YwQ5kZsTMO+kbuo7VcTKiZX6YTUM

    Score
    10/10
    redlinefudinfostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine payload

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks