redline | f368cc5ebcf0a8b940494c5d67bee35ad9df853c5134a328964273bdbbac2ba2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

l1802595.exe
Size

738KB
Sample

230713-al3e7sga3v
MD5

4b50bfa6e84569eb1b9b073e1b79bed6
SHA1

8fd5947ac731cd69ad6904da996dbb67a4974d30
SHA256

f368cc5ebcf0a8b940494c5d67bee35ad9df853c5134a328964273bdbbac2ba2
SHA512

df9275d3810925170454fa1bdf198fde80787e6f2b25bea372343db0cc37bc2236bd52596b261b3509c2664738ba428e847017ba4f9b8ba9cc23773110555fea
SSDEEP

12288:XQxgAF0zTNJiICSVtg0wBW3iFt4ONq30/4St2NBd0JoLdaoi9Bbk:XSFSxJBbVTb34k30/8dRi9

Score

10^/10

redline kira infostealer

Malware Config

Extracted

Family

redline

Botnet

kira

C2

77.91.68.48:19071

Attributes

auth_value
1677a40fd8997eb89377e1681911e9c6

Targets

- Target
  
  l1802595.exe
- Size
  
  738KB
- MD5
  
  4b50bfa6e84569eb1b9b073e1b79bed6
- SHA1
  
  8fd5947ac731cd69ad6904da996dbb67a4974d30
- SHA256
  
  f368cc5ebcf0a8b940494c5d67bee35ad9df853c5134a328964273bdbbac2ba2
- SHA512
  
  df9275d3810925170454fa1bdf198fde80787e6f2b25bea372343db0cc37bc2236bd52596b261b3509c2664738ba428e847017ba4f9b8ba9cc23773110555fea
- SSDEEP
  
  12288:XQxgAF0zTNJiICSVtg0wBW3iFt4ONq30/4St2NBd0JoLdaoi9Bbk:XSFSxJBbVTb34k30/8dRi9
Score

10^/10

redline kira infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

redlinekirainfostealer

behavioral2

redlinekirainfostealer