Overview

overview

10

Static

static

10

0x00060000...15.exe

windows7-x64

10

0x00060000...15.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0x0006000000014140-115.dat

  • Size

    145KB

  • Sample

    230515-yeb7fafe9z

  • MD5

    192abbd3b51e1ba1af97ec5b588ae502

  • SHA1

    bf5e2f3e3b004f2f289cf09e8b473f2bf2ec27da

  • SHA256

    0617471dd9022974281665ba15084854936b524950ebf04b989772562c66fc17

  • SHA512

    af0b7f020fae01cdeb8a196bec3a71f790946399f9cad295c1491c84489aef0fc326ff94269e3dc0f28bc811acaf696946ab7711be21019afbe3fec4102a2877

  • SSDEEP

    3072:yV+m5cZQmRSJyq2G7z+Ued26U+QEThhZ98e8h4:yjcWnC1PCEThhH

Score
10/10
redlinelukainfostealer

Malware Config

Extracted

Family

redline

Botnet

luka

C2

185.161.248.75:4132

Attributes
  • auth_value

    44560bcd37d6bf076da309730fdb519a

Targets

    • Target

      0x0006000000014140-115.dat

    • Size

      145KB

    • MD5

      192abbd3b51e1ba1af97ec5b588ae502

    • SHA1

      bf5e2f3e3b004f2f289cf09e8b473f2bf2ec27da

    • SHA256

      0617471dd9022974281665ba15084854936b524950ebf04b989772562c66fc17

    • SHA512

      af0b7f020fae01cdeb8a196bec3a71f790946399f9cad295c1491c84489aef0fc326ff94269e3dc0f28bc811acaf696946ab7711be21019afbe3fec4102a2877

    • SSDEEP

      3072:yV+m5cZQmRSJyq2G7z+Ued26U+QEThhZ98e8h4:yjcWnC1PCEThhH

    Score
    10/10
    redlinelukainfostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks