redline | 9b400556890eb898227a06f91838ff0edf22c19a5f06d5f99181c7da2c45ea07 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

file
Size

383KB
Sample

230807-ep6z1sef6v
MD5

0895ce27dc1c490a255f9e482c2860c4
SHA1

7b3e1719976430ef35e9a87cc1f3d25d1f204402
SHA256

9b400556890eb898227a06f91838ff0edf22c19a5f06d5f99181c7da2c45ea07
SHA512

dc86637193282fa1af783b645f50537ea26a8b46099feb1b4399d994d5ecaa7ccd3688919482e7a11ed2dff0b3fb4e9435ec2512f62b68f437fa0f29b357f187
SSDEEP

6144:WNosHpxrgdQCehYroroFzWxv7OP8DHLYv:MoSp5gi4ro8cPDHU

Score

10^/10

redline logsdiller cloud (telegram: @logsdillabot)infostealer

Malware Config

Extracted

Family

redline

Botnet

LogsDiller Cloud (Telegram: @logsdillabot)

C2

51.89.201.49:6932

Attributes

auth_value
c2955ed3813a798683a185a82e949f88

Targets

- Target
  
  file
- Size
  
  383KB
- MD5
  
  0895ce27dc1c490a255f9e482c2860c4
- SHA1
  
  7b3e1719976430ef35e9a87cc1f3d25d1f204402
- SHA256
  
  9b400556890eb898227a06f91838ff0edf22c19a5f06d5f99181c7da2c45ea07
- SHA512
  
  dc86637193282fa1af783b645f50537ea26a8b46099feb1b4399d994d5ecaa7ccd3688919482e7a11ed2dff0b3fb4e9435ec2512f62b68f437fa0f29b357f187
- SSDEEP
  
  6144:WNosHpxrgdQCehYroroFzWxv7OP8DHLYv:MoSp5gi4ro8cPDHU
Score

10^/10

redline logsdiller cloud (telegram: @logsdillabot)infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

redlinelogsdiller cloud (telegram: @logsdillabot)infostealer

behavioral2