Overview

overview

10

Static

static

10

0x00090000...78.exe

windows7-x64

10

0x00090000...78.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0x00090000000122fc-78.dat

  • Size

    145KB

  • Sample

    230523-lf4xmaef37

  • MD5

    c60042aa318365cdb82f6f863bdfda62

  • SHA1

    c78cd7a88cf07a03a54931cc90ac3c1b82c4533b

  • SHA256

    5960181807fef243c84038f0d96d6c8e9877a473c3a8cb042c891c0eb9a145da

  • SHA512

    00db084b8773ee44e331934f13ad2c6e841bd2c7ccdfd262a093236a6d86999a059d1c84be4838797d4210a84904e2c752587fe0cb16fb6aeb7bdd3801da400a

  • SSDEEP

    3072:FV+m5chQmRSZkJaj+5oxvtXwkXh0Za8e8hM:FjE1GnRXh0Q

Score
10/10
redlinedereninfostealer

Malware Config

Extracted

Family

redline

Botnet

deren

C2

77.91.68.253:19065

Attributes
  • auth_value

    04a169f1fb198bfbeca74d0e06ea2d54

Targets

    • Target

      0x00090000000122fc-78.dat

    • Size

      145KB

    • MD5

      c60042aa318365cdb82f6f863bdfda62

    • SHA1

      c78cd7a88cf07a03a54931cc90ac3c1b82c4533b

    • SHA256

      5960181807fef243c84038f0d96d6c8e9877a473c3a8cb042c891c0eb9a145da

    • SHA512

      00db084b8773ee44e331934f13ad2c6e841bd2c7ccdfd262a093236a6d86999a059d1c84be4838797d4210a84904e2c752587fe0cb16fb6aeb7bdd3801da400a

    • SSDEEP

      3072:FV+m5chQmRSZkJaj+5oxvtXwkXh0Za8e8hM:FjE1GnRXh0Q

    Score
    10/10
    redlinedereninfostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks