redline | 79d4dc3df252015895e353474a96da78323db0a7c3e50538b7ce1af04f4d502f | Triage

Sharing

General

Target

7c1f606fef562c6c4e04b6a7f.exe
Size

266KB
Sample

230710-qjq76aaf34
MD5

7c1f606fef562c6c4e04b6a7f9bfdff1
SHA1

a18c7cbaa8ac9088b1729f9856317d3e1b763b3b
SHA256

79d4dc3df252015895e353474a96da78323db0a7c3e50538b7ce1af04f4d502f
SHA512

736d7866fe13cb6953fbd00f8765ccd351459cf71563cdffe64224cfeeeb8bc95b6879b95fa374709c1dce685e1a928f78ca5d07b1070533c3958956836570b5
SSDEEP

3072:+jM+iOHMwew7+picM/LsVVct+Z7bYH9jqyo/QnfzKX+9MByRtq9Lxfx:4MvOswD7SVVctqoDo/QnfzKv2tq9L

Score

10^/10

redline kira infostealer

Malware Config

Extracted

Family

redline

Botnet

kira

C2

77.91.68.48:19071

Attributes

auth_value
1677a40fd8997eb89377e1681911e9c6

Targets

- Target
  
  7c1f606fef562c6c4e04b6a7f.exe
- Size
  
  266KB
- MD5
  
  7c1f606fef562c6c4e04b6a7f9bfdff1
- SHA1
  
  a18c7cbaa8ac9088b1729f9856317d3e1b763b3b
- SHA256
  
  79d4dc3df252015895e353474a96da78323db0a7c3e50538b7ce1af04f4d502f
- SHA512
  
  736d7866fe13cb6953fbd00f8765ccd351459cf71563cdffe64224cfeeeb8bc95b6879b95fa374709c1dce685e1a928f78ca5d07b1070533c3958956836570b5
- SSDEEP
  
  3072:+jM+iOHMwew7+picM/LsVVct+Z7bYH9jqyo/QnfzKX+9MByRtq9Lxfx:4MvOswD7SVVctqoDo/QnfzKv2tq9L
Score

10^/10

redline kira infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

redlinekirainfostealer

behavioral2

redlinekirainfostealer