redline | db399aedc2932f53c234871f6cf91631e09642cfd305fb40a061b732c714540d | Triage

Submit
Reports

Overview

overview

Static

static

3

dridex

windows10-1703-x64

Sharing

General

Target

db399aedc2932f53c234871f6cf91631e09642cfd305fb40a061b732c714540d
Size

354KB
Sample

230731-tn7mgshd45
MD5

d93b2811d13da9c8e65fb9f6cc61518f
SHA1

b27248b3f8c77c13779e4f1e15f9e22a0cbe2e28
SHA256

db399aedc2932f53c234871f6cf91631e09642cfd305fb40a061b732c714540d
SHA512

4f90e6291c917c328bf0a4ae99da6e51a76371aa5d193a10cc6b3cd170d6db09e328a36b6ef247d49866caaeea7bfe21e9ffe628ec20bd84b4926060db08b2ce
SSDEEP

6144:FFCc1h5aRcakVDXgbqDHhv5g/YZhjsScXwaPdHcoH3j:FHfaRcakWbqLhv56uhjHaPd8

Score

10^/10

redline @germany infostealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

db399aedc2932f53c234871f6cf91631e09642cfd305fb40a061b732c714540d.exe

Resource

win10-20230703-en

redline @germany infostealer

windows10-1703-x64

2 signatures

150 seconds

Malware Config

Extracted

Family

redline

Botnet

@Germany

C2

194.26.135.162:2920

Attributes

auth_value
9d15d78194367a949e54a07d6ce02c62

Targets

- Target
  
  db399aedc2932f53c234871f6cf91631e09642cfd305fb40a061b732c714540d
- Size
  
  354KB
- MD5
  
  d93b2811d13da9c8e65fb9f6cc61518f
- SHA1
  
  b27248b3f8c77c13779e4f1e15f9e22a0cbe2e28
- SHA256
  
  db399aedc2932f53c234871f6cf91631e09642cfd305fb40a061b732c714540d
- SHA512
  
  4f90e6291c917c328bf0a4ae99da6e51a76371aa5d193a10cc6b3cd170d6db09e328a36b6ef247d49866caaeea7bfe21e9ffe628ec20bd84b4926060db08b2ce
- SSDEEP
  
  6144:FFCc1h5aRcakVDXgbqDHhv5g/YZhjsScXwaPdHcoH3j:FHfaRcakWbqLhv56uhjHaPd8
Score

10^/10

redline @germany infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

redline@germanyinfostealer

© 2018-2024

Terms | Privacy