redline | c0a2c54ebc72556be4375018c7fa7c2514543b59cc2ac0b346954942f062d537 | Triage

Submit
Reports

Overview

overview

Static

static

1

dridex

windows10-2004-x64

Analysis

max time kernel
143s
max time network
151s
platform
windows10-2004_x64
resource
win10v2004-20230703-en
resource tags

arch:x64arch:x86image:win10v2004-20230703-enlocale:en-usos:windows10-2004-x64system
submitted
14-07-2023 02:35

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

c0a2c54ebc72556be4375018c7fa7c2514543b59cc2ac0b346954942f062d537.exe

Resource

win10v2004-20230703-en

redline kira infostealer

windows10-2004-x64

1 signatures

150 seconds

Report Analysis Logs

General

Target

c0a2c54ebc72556be4375018c7fa7c2514543b59cc2ac0b346954942f062d537.exe
Size

729KB
MD5

6518213f66fc45c441587334bfe9b8e5
SHA1

53d80324bbcfc16ef02a923b7e51c547c3c8c506
SHA256

c0a2c54ebc72556be4375018c7fa7c2514543b59cc2ac0b346954942f062d537
SHA512

9a891413fcc705ed29472afb0a86d385472b96d0a7a2dbc20a21edc5d517e96e00c6af6d7de9fd370669522b5d61ec7178d2f82b9eb4b24fda232040c9f9fdd7
SSDEEP

12288:Ko2KXf2D8kh1IQK/RxowECWvPNoGAwdfGZ+5iICSVtg0wBW3iFt4ONq30/4St2NV:KWP2D8khe//RxowECWvPNoGAwdfGZYBM

Score

10^/10

redline kira infostealer

Malware Config

Extracted

Family

redline

Botnet

kira

C2

77.91.68.48:19071

Attributes

auth_value
1677a40fd8997eb89377e1681911e9c6

Signatures

RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
infostealer redline

Processes

C:\Users\Admin\AppData\Local\Temp\c0a2c54ebc72556be4375018c7fa7c2514543b59cc2ac0b346954942f062d537.exe
"C:\Users\Admin\AppData\Local\Temp\c0a2c54ebc72556be4375018c7fa7c2514543b59cc2ac0b346954942f062d537.exe"
1⤵
PID:4528

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/4528-133-0x0000000000400000-0x0000000000444000-memory.dmp

Filesize
272KB

Download
memory/4528-134-0x00000000005B0000-0x00000000005E0000-memory.dmp

Filesize
192KB

Download
memory/4528-138-0x0000000074ED0000-0x0000000075680000-memory.dmp

Filesize
7.7MB

Download
memory/4528-139-0x0000000004AC0000-0x00000000050D8000-memory.dmp

Filesize
6.1MB

Download
memory/4528-140-0x00000000050E0000-0x00000000051EA000-memory.dmp

Filesize
1.0MB

Download
memory/4528-142-0x0000000005220000-0x0000000005232000-memory.dmp

Filesize
72KB

Download
memory/4528-141-0x0000000004AB0000-0x0000000004AC0000-memory.dmp

Filesize
64KB

Download
memory/4528-143-0x0000000005240000-0x000000000527C000-memory.dmp

Filesize
240KB

Download
memory/4528-144-0x0000000000400000-0x0000000000444000-memory.dmp

Filesize
272KB

Download
memory/4528-145-0x0000000074ED0000-0x0000000075680000-memory.dmp

Filesize
7.7MB

Download
memory/4528-146-0x0000000004AB0000-0x0000000004AC0000-memory.dmp

Filesize
64KB

Download

© 2018-2025

Terms | Privacy