Overview

overview

10

Static

static

3

kp242852.exe

windows7-x64

1

kp242852.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    kp242852.exe.bin

  • Size

    340KB

  • Sample

    230505-zk6tnsea78

  • MD5

    57bb5bfe83c9272884f5a377b5b65f54

  • SHA1

    2b9afbd2f74fa583f4a3987a93ed6fea9b5b31b8

  • SHA256

    b421398a14f07c8509dd167a0941e0e737a9006c8813028719a06bcd52b6082b

  • SHA512

    08a432539ccfe266522a3a8d485af078740197000883831dfaa31e9b9b0c0b9692dc69240228ca0dc90e163feae2de11ea67a4f7339126c70cf9a6ee40b4f85f

  • SSDEEP

    6144:tXZfAxwBD1PNeLCkuBWN6uv+KZ9jvAVzx1cTbGKAUqW+gOG32:tXZfAxYvYC7WN6FN18bGKAA+

Score
10/10
redlineinfostealerstealer

Malware Config

Targets

    • Target

      kp242852.exe.bin

    • Size

      340KB

    • MD5

      57bb5bfe83c9272884f5a377b5b65f54

    • SHA1

      2b9afbd2f74fa583f4a3987a93ed6fea9b5b31b8

    • SHA256

      b421398a14f07c8509dd167a0941e0e737a9006c8813028719a06bcd52b6082b

    • SHA512

      08a432539ccfe266522a3a8d485af078740197000883831dfaa31e9b9b0c0b9692dc69240228ca0dc90e163feae2de11ea67a4f7339126c70cf9a6ee40b4f85f

    • SSDEEP

      6144:tXZfAxwBD1PNeLCkuBWN6uv+KZ9jvAVzx1cTbGKAUqW+gOG32:tXZfAxYvYC7WN6FN18bGKAA+

    Score
    10/10
    redlineinfostealerstealer

    • Detects Redline Stealer samples

      This rule detects the presence of Redline Stealer samples based on their unique strings.

      stealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks