Overview

overview

10

Static

static

10

loader.dll.exe

windows7-x64

10

loader.dll.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    loader.dll.exe

  • Size

    145KB

  • Sample

    230519-hzxqwaee6t

  • MD5

    7e944f5789a8a226490d2ae03b65148d

  • SHA1

    2e233ca174ef5549b91974cd9b2a5d42c7ec98d9

  • SHA256

    fa6f65c685c3ae56982dafb088bd00c64395456ea10b80e1d0b887be453df6ec

  • SHA512

    b99536151fbf353d09f0eac22ab25af5aad1b3ff8eae0f6bb3c281d17497645c8dd6b0d22c5132a5e39986fd274c122a796279cd0667404e2d99c359ac9ae29e

  • SSDEEP

    3072:WV+m5c/QmRSNKDN2W9cVXKHhtZx8e8h2:Wj2+WzHhtb

Score
10/10
redlinedakoinfostealer

Malware Config

Extracted

Family

redline

Botnet

dako

C2

77.91.68.253:41783

Attributes
  • auth_value

    c6bc6a7edb74e0eff37800710e07bee1

Targets

    • Target

      loader.dll.exe

    • Size

      145KB

    • MD5

      7e944f5789a8a226490d2ae03b65148d

    • SHA1

      2e233ca174ef5549b91974cd9b2a5d42c7ec98d9

    • SHA256

      fa6f65c685c3ae56982dafb088bd00c64395456ea10b80e1d0b887be453df6ec

    • SHA512

      b99536151fbf353d09f0eac22ab25af5aad1b3ff8eae0f6bb3c281d17497645c8dd6b0d22c5132a5e39986fd274c122a796279cd0667404e2d99c359ac9ae29e

    • SSDEEP

      3072:WV+m5c/QmRSNKDN2W9cVXKHhtZx8e8h2:Wj2+WzHhtb

    Score
    10/10
    redlinedakoinfostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks