Overview

overview

10

Static

static

3

SecuriteIn...98.exe

windows7-x64

10

SecuriteIn...98.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    SecuriteInfo.com.Variant.Zusy.465956.29298.4898.exe

  • Size

    1.2MB

  • Sample

    230504-lycwvsbd79

  • MD5

    19df906dcc6832150ea885afe1b37066

  • SHA1

    a20000afc543feed9361567c347594e9c7e8b085

  • SHA256

    2da30d32c89579b2f31dd1de4c0ea0df0a446feef8a69af55334515369d0263c

  • SHA512

    730ca84fab9250ce54ac49571cf0004211cabb4769a2bb86c17afefc757c180e09d2a90d0db18a4176ca974ff328e4b7bd8b59606dd5dc719290752f4bc81240

  • SSDEEP

    12288:2s9fXUfFIWfTC0xzIBo4swnD9fvtvYSgry:2soF1nxzIV1vt7O

Score
10/10
redline6179190088infostealer

Malware Config

Extracted

Family

redline

Botnet

6179190088

C2

dolma.top:40309

Attributes
  • auth_value

    c17ae9056e71cb452caa9c2f02a15fc1

Targets

    • Target

      SecuriteInfo.com.Variant.Zusy.465956.29298.4898.exe

    • Size

      1.2MB

    • MD5

      19df906dcc6832150ea885afe1b37066

    • SHA1

      a20000afc543feed9361567c347594e9c7e8b085

    • SHA256

      2da30d32c89579b2f31dd1de4c0ea0df0a446feef8a69af55334515369d0263c

    • SHA512

      730ca84fab9250ce54ac49571cf0004211cabb4769a2bb86c17afefc757c180e09d2a90d0db18a4176ca974ff328e4b7bd8b59606dd5dc719290752f4bc81240

    • SSDEEP

      12288:2s9fXUfFIWfTC0xzIBo4swnD9fvtvYSgry:2soF1nxzIV1vt7O

    Score
    10/10
    redline6179190088infostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks