redline | 572128dc0faa871bfefbbca8d0fb529db08c4fee55a7ec021b2f8f5c27fd1fe2 | Triage

Sharing

General

Target

0x000600000001464d-116.dat
Size

145KB
Sample

230523-2qlf2ahh45
MD5

7845e8790b337cc504c6fd14ec8b15bb
SHA1

b382197d3a2d5cc13c3cfd9b2799d7a76120db9c
SHA256

572128dc0faa871bfefbbca8d0fb529db08c4fee55a7ec021b2f8f5c27fd1fe2
SHA512

d5164bf1f20f1a4363acd7a01a9e4fe2ad14980da2dd5605e185f274bd2ebd912176237964ce9ada114697f103416d55163d7131167056966e6b864cfd214ded
SSDEEP

1536:o2BGlTP+mZP61sEYDmRSNIgcscLDuRwH77+u8oxQKHbuxGBNM740wuei/Qv+R+Fn:6V+m5cvQmRSN90+82iTi74h9ZF8e8hU

Score

10^/10

redline mixa infostealer

Malware Config

Extracted

Family

redline

Botnet

mixa

C2

185.161.248.37:4138

Attributes

auth_value
9d14534b25ac495ab25b59800acf3bb2

Targets

- Target
  
  0x000600000001464d-116.dat
- Size
  
  145KB
- MD5
  
  7845e8790b337cc504c6fd14ec8b15bb
- SHA1
  
  b382197d3a2d5cc13c3cfd9b2799d7a76120db9c
- SHA256
  
  572128dc0faa871bfefbbca8d0fb529db08c4fee55a7ec021b2f8f5c27fd1fe2
- SHA512
  
  d5164bf1f20f1a4363acd7a01a9e4fe2ad14980da2dd5605e185f274bd2ebd912176237964ce9ada114697f103416d55163d7131167056966e6b864cfd214ded
- SSDEEP
  
  1536:o2BGlTP+mZP61sEYDmRSNIgcscLDuRwH77+u8oxQKHbuxGBNM740wuei/Qv+R+Fn:6V+m5cvQmRSN90+82iTi74h9ZF8e8hU
Score

10^/10

redline mixa infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

redlinemixainfostealer

behavioral2

redlinemixainfostealer