Overview

overview

10

Static

static

1

7b789842cb...5d.exe

windows7-x64

10

7b789842cb...5d.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    7b789842cbf26efdbe8a0c4d33a1745d.exe

  • Size

    385KB

  • Sample

    230404-edxxzaee21

  • MD5

    7b789842cbf26efdbe8a0c4d33a1745d

  • SHA1

    e588e03b71dfe85e4327cd663dcb55059ae0e96f

  • SHA256

    e5feb52b6df5e2c861badea1ad91c4841a3c61478c8734c91e6941c8bc2f4be8

  • SHA512

    95af6984d5ac980eb7915d7164a901bce6716b679e73be7ff8bc222d829ab2d794a7b92487bc205006a0512b49cb22d1a4ea4c3b739085a8ef41f58f971f640d

  • SSDEEP

    6144:DZ0bnEWkGcIB06DWVcTD9icclND7ttBSkwavuozh3j2RvzlFOGwTfm:DZKnEWeIBvEcTEc8DDBPwDUivz3Im

Score
10/10
redlinebuild1infostealer

Malware Config

Extracted

Family

redline

Botnet

Build1

C2

185.189.151.109:36839

Attributes
  • auth_value

    d676f4d8230f2d1faff9a183479712d6

Targets

    • Target

      7b789842cbf26efdbe8a0c4d33a1745d.exe

    • Size

      385KB

    • MD5

      7b789842cbf26efdbe8a0c4d33a1745d

    • SHA1

      e588e03b71dfe85e4327cd663dcb55059ae0e96f

    • SHA256

      e5feb52b6df5e2c861badea1ad91c4841a3c61478c8734c91e6941c8bc2f4be8

    • SHA512

      95af6984d5ac980eb7915d7164a901bce6716b679e73be7ff8bc222d829ab2d794a7b92487bc205006a0512b49cb22d1a4ea4c3b739085a8ef41f58f971f640d

    • SSDEEP

      6144:DZ0bnEWkGcIB06DWVcTD9icclND7ttBSkwavuozh3j2RvzlFOGwTfm:DZKnEWeIBvEcTEc8DDBPwDUivz3Im

    Score
    10/10
    redlinebuild1infostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine payload

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks