redline | 0b5650c7c58b708a18ecd0a28467c11925754918df783d7fef277c0492c824ec | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0b5650c7c58b708a18ecd0a28467c11925754918df783d7fef277c0492c824ec
Size

308KB
Sample

230716-2cwd3shg7z
MD5

0dbac0d2d1a896ba1907423a5cf1207a
SHA1

595b92d7706297cf54766d8f6c89c29ab7cf89c2
SHA256

0b5650c7c58b708a18ecd0a28467c11925754918df783d7fef277c0492c824ec
SHA512

a33cf6b02fdcb6cd6a7b9ace1773343b429fcf16b3733124d00b847d46c128c5f3ef90c30b36ebaa68a40a30291b9000285d696652d35f7e3e380dad4887e48c
SSDEEP

3072:R83dlABzzLgjiRrJwelYplrrrlxUzLX049hWa/dUBilHMOnwXQPq8Gxzn729897X:e4KjiRVwzLGrsBilHn27RV

Score

10^/10

redline kira infostealer

Malware Config

Extracted

Family

redline

Botnet

kira

C2

77.91.68.48:19071

Attributes

auth_value
1677a40fd8997eb89377e1681911e9c6

Targets

- Target
  
  0b5650c7c58b708a18ecd0a28467c11925754918df783d7fef277c0492c824ec
- Size
  
  308KB
- MD5
  
  0dbac0d2d1a896ba1907423a5cf1207a
- SHA1
  
  595b92d7706297cf54766d8f6c89c29ab7cf89c2
- SHA256
  
  0b5650c7c58b708a18ecd0a28467c11925754918df783d7fef277c0492c824ec
- SHA512
  
  a33cf6b02fdcb6cd6a7b9ace1773343b429fcf16b3733124d00b847d46c128c5f3ef90c30b36ebaa68a40a30291b9000285d696652d35f7e3e380dad4887e48c
- SSDEEP
  
  3072:R83dlABzzLgjiRrJwelYplrrrlxUzLX049hWa/dUBilHMOnwXQPq8Gxzn729897X:e4KjiRVwzLGrsBilHn27RV
Score

10^/10

redline kira infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

redlinekirainfostealer