Overview

overview

10

Static

static

10

0x00080000...78.exe

windows7-x64

10

0x00080000...78.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0x0008000000013362-78.dat

  • Size

    145KB

  • Sample

    230523-gbv2pseg8w

  • MD5

    df1b332ad1c5178c99d9554f1feeb5bd

  • SHA1

    64c92ab8fc646ff86febfb7de981257d2cbb3666

  • SHA256

    0afe37e1009a7ab8fd986799fbf66127879a57681d0c1cd4923705742689c176

  • SHA512

    d303db5d2288a2fa106cea9d4d60332961bc5a3523bae1ce7b6306287bd86c0186e0fd5f1a57e9d11108bbf8dd3ab41cb7fc274952bd7dd444e53d0da68ae767

  • SSDEEP

    3072:FV+m5chQmRSZkJaj+5oxvtXwkXh0Za8e8hM:FjE1GnRXh0Q

Score
10/10
redlinedereninfostealer

Malware Config

Extracted

Family

redline

Botnet

deren

C2

77.91.68.253:19065

Attributes
  • auth_value

    04a169f1fb198bfbeca74d0e06ea2d54

Targets

    • Target

      0x0008000000013362-78.dat

    • Size

      145KB

    • MD5

      df1b332ad1c5178c99d9554f1feeb5bd

    • SHA1

      64c92ab8fc646ff86febfb7de981257d2cbb3666

    • SHA256

      0afe37e1009a7ab8fd986799fbf66127879a57681d0c1cd4923705742689c176

    • SHA512

      d303db5d2288a2fa106cea9d4d60332961bc5a3523bae1ce7b6306287bd86c0186e0fd5f1a57e9d11108bbf8dd3ab41cb7fc274952bd7dd444e53d0da68ae767

    • SSDEEP

      3072:FV+m5chQmRSZkJaj+5oxvtXwkXh0Za8e8hM:FjE1GnRXh0Q

    Score
    10/10
    redlinedereninfostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks