redline | 3c805fb2e275bf1357c98c3dcfdf77d627bd1e74280e38edfd05a5d1ea33ec12 | Triage

Sharing

General

Target

3c805fb2e275bf1357c98c3dcfdf77d627bd1e74280e38edfd05a5d1ea33ec12
Size

308KB
Sample

230720-nenv5agg2t
MD5

800288f36a4e9cdbf847639408a36713
SHA1

ef832930d0a73b8ef06515ef705e391a22b5330c
SHA256

3c805fb2e275bf1357c98c3dcfdf77d627bd1e74280e38edfd05a5d1ea33ec12
SHA512

1dbf2300416d19ca5be577a9a98cb776a0e4ccfd16c4b3c6366df541fa7d6d65d5a5075df1dddd88b0f9298c10e4cf2ed1fe103b32c6cda136e23603fb22fcef
SSDEEP

3072:5JGXcVezz7EjiRKpwelYpKLUrlfKsLX049hWa/dUBilHMOnwXQPq8Gxzn729897X:mWhjiRiwzcErsBilHn27RV

Score

10^/10

redline kira infostealer

Malware Config

Extracted

Family

redline

Botnet

kira

C2

77.91.68.48:19071

Attributes

auth_value
1677a40fd8997eb89377e1681911e9c6

Targets

- Target
  
  3c805fb2e275bf1357c98c3dcfdf77d627bd1e74280e38edfd05a5d1ea33ec12
- Size
  
  308KB
- MD5
  
  800288f36a4e9cdbf847639408a36713
- SHA1
  
  ef832930d0a73b8ef06515ef705e391a22b5330c
- SHA256
  
  3c805fb2e275bf1357c98c3dcfdf77d627bd1e74280e38edfd05a5d1ea33ec12
- SHA512
  
  1dbf2300416d19ca5be577a9a98cb776a0e4ccfd16c4b3c6366df541fa7d6d65d5a5075df1dddd88b0f9298c10e4cf2ed1fe103b32c6cda136e23603fb22fcef
- SSDEEP
  
  3072:5JGXcVezz7EjiRKpwelYpKLUrlfKsLX049hWa/dUBilHMOnwXQPq8Gxzn729897X:mWhjiRiwzcErsBilHn27RV
Score

10^/10

redline kira infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

redlinekirainfostealer