Overview

overview

10

Static

static

1

1311ae8c47...2a.exe

windows7-x64

10

1311ae8c47...2a.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1311ae8c477333e6367514ed725342a47cfaeea6da0c5c0ef15ee6128087cc2a.exe

  • Size

    286KB

  • Sample

    230405-m5761sdg72

  • MD5

    b25b9825c978e8ae9b9181be6086da23

  • SHA1

    cbb0ba2a1101e0d2691144352467f79e7f6dafdb

  • SHA256

    1311ae8c477333e6367514ed725342a47cfaeea6da0c5c0ef15ee6128087cc2a

  • SHA512

    c34ffcf6a56e9bee341aaed0ba33b8924f0e30acc7acf479c87f13dfadae3baa3532f8e9cc57bcc3b053d90a851615f98ce0678a8a74d507f102618f0d4c321f

  • SSDEEP

    6144:DuXWQuk4c8ARD+Ns8J0vgyt6cgRee5C0K:DiJuk45ARD20vgm6psn

Score
10/10
redlinedozkinfostealer

Malware Config

Extracted

Family

redline

Botnet

dozk

C2

91.215.85.15:25916

Attributes
  • auth_value

    9f1dc4ff242fb8b53742acae0ef96143

Targets

    • Target

      1311ae8c477333e6367514ed725342a47cfaeea6da0c5c0ef15ee6128087cc2a.exe

    • Size

      286KB

    • MD5

      b25b9825c978e8ae9b9181be6086da23

    • SHA1

      cbb0ba2a1101e0d2691144352467f79e7f6dafdb

    • SHA256

      1311ae8c477333e6367514ed725342a47cfaeea6da0c5c0ef15ee6128087cc2a

    • SHA512

      c34ffcf6a56e9bee341aaed0ba33b8924f0e30acc7acf479c87f13dfadae3baa3532f8e9cc57bcc3b053d90a851615f98ce0678a8a74d507f102618f0d4c321f

    • SSDEEP

      6144:DuXWQuk4c8ARD+Ns8J0vgyt6cgRee5C0K:DiJuk45ARD20vgm6psn

    Score
    10/10
    redlinedozkinfostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine payload

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks