redline | 4cc79a634b941f45ac958c9b52012cf0b3bfb98a9e6c53f7274e1b0323760c40 | Triage

Submit
Reports

Overview

overview

Static

static

3

dridex

windows10-1703-x64

Sharing

General

Target

4cc79a634b941f45ac958c9b52012cf0b3bfb98a9e6c53f7274e1b0323760c40
Size

360KB
Sample

230731-vsqefaaf8y
MD5

3d525e3e62d6fd9a2e54cc4284630c1b
SHA1

375b6327dbcfd89f85fdd0faf8338bd3e2410204
SHA256

4cc79a634b941f45ac958c9b52012cf0b3bfb98a9e6c53f7274e1b0323760c40
SHA512

d4723dabdf62d3254953761f8a2c5482d7b0caa7566f2f78fc6e807c528d45db5d09d90b0d98f33a753386a03d34c4d8d954f56699d623912bd1dfa924668cbb
SSDEEP

6144:QFp+1JdruIKk4fYNZku9U+RmABXJOKr68Ay7PRo:Q8zruIKP0ZkuO+4ABEKJAyDG

Score

10^/10

redline @germany infostealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

4cc79a634b941f45ac958c9b52012cf0b3bfb98a9e6c53f7274e1b0323760c40.exe

Resource

win10-20230703-en

redline @germany infostealer

windows10-1703-x64

2 signatures

150 seconds

Malware Config

Extracted

Family

redline

Botnet

@Germany

C2

194.26.135.162:2920

Attributes

auth_value
9d15d78194367a949e54a07d6ce02c62

Targets

- Target
  
  4cc79a634b941f45ac958c9b52012cf0b3bfb98a9e6c53f7274e1b0323760c40
- Size
  
  360KB
- MD5
  
  3d525e3e62d6fd9a2e54cc4284630c1b
- SHA1
  
  375b6327dbcfd89f85fdd0faf8338bd3e2410204
- SHA256
  
  4cc79a634b941f45ac958c9b52012cf0b3bfb98a9e6c53f7274e1b0323760c40
- SHA512
  
  d4723dabdf62d3254953761f8a2c5482d7b0caa7566f2f78fc6e807c528d45db5d09d90b0d98f33a753386a03d34c4d8d954f56699d623912bd1dfa924668cbb
- SSDEEP
  
  6144:QFp+1JdruIKk4fYNZku9U+RmABXJOKr68Ay7PRo:Q8zruIKP0ZkuO+4ABEKJAyDG
Score

10^/10

redline @germany infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

redline@germanyinfostealer

© 2018-2024

Terms | Privacy