redline | bf0e0d3a9bfde1fadc84bfc94b8bc61b76b476eea4e3d3388038c0b80109079b | Triage

Sharing

General

Target

test.zip
Size

61KB
Sample

230601-rqey5sef78
MD5

511b0ce1997c94f44bbbc4f17cbc6afe
SHA1

1d4c09e55b9d6aa44830af3c0f4d5732ab60451e
SHA256

bf0e0d3a9bfde1fadc84bfc94b8bc61b76b476eea4e3d3388038c0b80109079b
SHA512

848c3ece3cd71a2f5bb754b11d89b193b226fcf36e6b071f2f9c6d9ac16fd43a5b3d20a0ef1d607ce8b0201bf723b8aee854d9dd52bbd9d4fe7665c3fb207c9c
SSDEEP

1536:FmiS1tTzIKQ+r37Iv84nD9n9vcRHCPR+RQAMN8B4l:FmipKQ+r3sbpnNRM1B6

Score

10^/10

redline x infostealer

Malware Config

Extracted

Family

redline

Botnet

X

C2

5.161.205.68:24668

Attributes

auth_value
fe40c225330fc1a0dcb6cd2b4f18ccce

Targets

- Target
  
  400000.vbc.exe
- Size
  
  168KB
- MD5
  
  48aa4939874074d2463058d9cee0e932
- SHA1
  
  6ed8653b27d91aa88cfd61d337dd462f141a52f7
- SHA256
  
  118e7dcc6dce52bb31b5c9ee118e59feca65ad20225e36939f207a9d2d0fd698
- SHA512
  
  b08814e2b46ed6149b94236b4c83d2255eda90ff98c773fca0b629fd4c735eced121dff24a10ad6112e1185c35e538e7d5835d666ed708534956ca0f9b4f96d2
- SSDEEP
  
  1536:x42+kLqlVZRGWpUibgrFEm8nzJyYS4TGqVsbuPRqHXHo6lIE/83wYkA8e8hM:x/RgAEXAYSpqVkU6XHo6lIE/u8e8hM
Score

10^/10

redline x infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

redlinexinfostealer

behavioral2

redlinexinfostealer