redline | 90a109684bfaa72286fce9ba6dfaaa99e40599b573c2dc8366ce94753eafcc59 | Triage

Sharing

General

Target

ac9672cc44d386bb6e6e3fe9b.exe
Size

266KB
Sample

230710-qz5eqaag64
MD5

ac9672cc44d386bb6e6e3fe9ba90aeb3
SHA1

c8052a8e933cc49f64fa875a34911bf2f3f93ab5
SHA256

90a109684bfaa72286fce9ba6dfaaa99e40599b573c2dc8366ce94753eafcc59
SHA512

683e2ec7ef2ed2f6cde52ef5e32685fd58f7dc34edb63755f40d967a9392991b87d4acbf6d1d3fb77db3a03c23e6e84182545e76e4247f409ff06ce84b76d33b
SSDEEP

3072:uM+iOHMwew7+picM/NsVVct+Z7bYH9jqyo/QnfzKX+9MByRtq9Lxfx:uMvOswD7IVVctqoDo/QnfzKv2tq9L

Score

10^/10

redline kira infostealer

Malware Config

Extracted

Family

redline

Botnet

kira

C2

77.91.68.48:19071

Attributes

auth_value
1677a40fd8997eb89377e1681911e9c6

Targets

- Target
  
  ac9672cc44d386bb6e6e3fe9b.exe
- Size
  
  266KB
- MD5
  
  ac9672cc44d386bb6e6e3fe9ba90aeb3
- SHA1
  
  c8052a8e933cc49f64fa875a34911bf2f3f93ab5
- SHA256
  
  90a109684bfaa72286fce9ba6dfaaa99e40599b573c2dc8366ce94753eafcc59
- SHA512
  
  683e2ec7ef2ed2f6cde52ef5e32685fd58f7dc34edb63755f40d967a9392991b87d4acbf6d1d3fb77db3a03c23e6e84182545e76e4247f409ff06ce84b76d33b
- SSDEEP
  
  3072:uM+iOHMwew7+picM/NsVVct+Z7bYH9jqyo/QnfzKX+9MByRtq9Lxfx:uMvOswD7IVVctqoDo/QnfzKv2tq9L
Score

10^/10

redline kira infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

redlinekirainfostealer

behavioral2

redlinekirainfostealer