Overview

overview

10

Static

static

1

CryptoChec...ch.exe

windows7-x64

10

CryptoChec...ch.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    CryptoChecker v3.1.1.rar

  • Size

    1.5MB

  • Sample

    230803-m49nfseb6v

  • MD5

    ddd856845daa680bb206ed498f52c2eb

  • SHA1

    1db407cabf246c278a411120b4a3ded4e7893094

  • SHA256

    1d1db9076a3a87c4a2be09b7f936c651c5e0a15e70830a33f811259fb4ebedea

  • SHA512

    ea220e108a25e422caf2be8b50c1e52ab4cd34f8be0b0b3d37b9c8b0a24f33d131d11e80cbe9fc75880b2d7f1d70a9e7eb40036c053dcfc42bc5bc434a4ec379

  • SSDEEP

    24576:3vqOUE1kBuR+ak8mU8H9uz5Qy7ry5wRTKbzZ9t4YEHUWQzu3rOOgL61370W:3vqdIkBqiozOmHYjEHBlQO7r

Score
10/10
redlinemaininfostealer

Malware Config

Extracted

Family

redline

Botnet

main

C2

185.106.92.82:5438

Attributes
  • auth_value

    e1d8c486fa51e48b53d3384b5a2b4973

Targets

    • Target

      CryptoChecker v3.1.1/launch.exe

    • Size

      219.3MB

    • MD5

      39f90609236c5a5512022ac4217d0946

    • SHA1

      79de68103b33349f0a8b37d0a0080d73f13eb147

    • SHA256

      6932751709a4dbb193a60a1a7ca38c4a9428957acbf75e5ffda09bf9f9bb68fc

    • SHA512

      6ec6b3b0c932b9395045a737a95a0a58ef348d1e5c847cb75b5a0659ad8b91bb53375fc366e529401d464c1f6fafe7e40efc49cf54cfb1684b1463ff00876b5b

    • SSDEEP

      6144:D828BIGka3FrR1I83YP/AODz2Pgk4+8zjLmgu4BZTh:D828B0a+X1z2Yv+ijP3h

    Score
    10/10
    redlinemaininfostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks