redline | 22a75e2271753251a8ab4a6cc28272fcf1555e8fc9199f79f2f839663d23199c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

de5c480805eb9b2df8449d507472a6ac.exe
Size

266KB
Sample

230710-mr94fsag4w
MD5

de5c480805eb9b2df8449d507472a6ac
SHA1

1702e236a9257b41c600419d40028a86cc062de7
SHA256

22a75e2271753251a8ab4a6cc28272fcf1555e8fc9199f79f2f839663d23199c
SHA512

0d9e6f090444022cbfdfbe342d10c7175ee2b4476db955a8de758b61a69f88df2f35c206d916884e788eb7971d261e23418a1ab4847d6e0756b15d76dfec0d99
SSDEEP

3072:QM+iOHMwew7+picM/qsVVct+Z7bYH9jqyo/QnfzKX+9MByRtq9Lxfx:QMvOswD77VVctqoDo/QnfzKv2tq9L

Score

10^/10

redline kira infostealer

Malware Config

Extracted

Family

redline

Botnet

kira

C2

77.91.68.48:19071

Attributes

auth_value
1677a40fd8997eb89377e1681911e9c6

Targets

- Target
  
  de5c480805eb9b2df8449d507472a6ac.exe
- Size
  
  266KB
- MD5
  
  de5c480805eb9b2df8449d507472a6ac
- SHA1
  
  1702e236a9257b41c600419d40028a86cc062de7
- SHA256
  
  22a75e2271753251a8ab4a6cc28272fcf1555e8fc9199f79f2f839663d23199c
- SHA512
  
  0d9e6f090444022cbfdfbe342d10c7175ee2b4476db955a8de758b61a69f88df2f35c206d916884e788eb7971d261e23418a1ab4847d6e0756b15d76dfec0d99
- SSDEEP
  
  3072:QM+iOHMwew7+picM/qsVVct+Z7bYH9jqyo/QnfzKX+9MByRtq9Lxfx:QMvOswD77VVctqoDo/QnfzKv2tq9L
Score

10^/10

redline kira infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

redlinekirainfostealer

behavioral2

redlinekirainfostealer