redline | dc5d42ddf03e964cebc7cf6a86eef4cf88be29963e0a2d44255cb00a6a7d2d90 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dc5d42ddf03e964cebc7cf6a86eef4cf88be29963e0a2d44255cb00a6a7d2d90
Size

492KB
Sample

230716-pjry1sff4v
MD5

1cd5617dd6d8e8901ba98fe47c521803
SHA1

3a388f81dfbb0c3468cb5250dadb72af73f526de
SHA256

dc5d42ddf03e964cebc7cf6a86eef4cf88be29963e0a2d44255cb00a6a7d2d90
SHA512

6b76471ca438334a7f96d0b288e88e1ba792f867020b0f811120a2dcf34f9a922fbb8aecf8eb488d9a1ec91a84cc0cc27e3b862f52c92445a96cdb6b60dbb9cc
SSDEEP

6144:bi+4/rUF6xKLbpPW58+PrUwwDc9rA9RSfqozi5K4GGu7eg39iDfVtWGkkH2VXkwz:Ob/GNpODPr2o9zQK4U7WTVtWVkWPz

Score

10^/10

redline kira infostealer

Malware Config

Extracted

Family

redline

Botnet

kira

C2

77.91.68.48:19071

Attributes

auth_value
1677a40fd8997eb89377e1681911e9c6

Targets

- Target
  
  dc5d42ddf03e964cebc7cf6a86eef4cf88be29963e0a2d44255cb00a6a7d2d90
- Size
  
  492KB
- MD5
  
  1cd5617dd6d8e8901ba98fe47c521803
- SHA1
  
  3a388f81dfbb0c3468cb5250dadb72af73f526de
- SHA256
  
  dc5d42ddf03e964cebc7cf6a86eef4cf88be29963e0a2d44255cb00a6a7d2d90
- SHA512
  
  6b76471ca438334a7f96d0b288e88e1ba792f867020b0f811120a2dcf34f9a922fbb8aecf8eb488d9a1ec91a84cc0cc27e3b862f52c92445a96cdb6b60dbb9cc
- SSDEEP
  
  6144:bi+4/rUF6xKLbpPW58+PrUwwDc9rA9RSfqozi5K4GGu7eg39iDfVtWGkkH2VXkwz:Ob/GNpODPr2o9zQK4U7WTVtWVkWPz
Score

10^/10

redline kira infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

redlinekirainfostealer