redline | 58f831461c8f6baf0ae80f647962ca2878264aa656642569f4653e068662265e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

decode_d6a722f5dbabcef62e0109dc231fb34b4383938d30c1bc5a8e9cc4fb5ad20d93.exe
Size

174KB
Sample

230815-r77eqabc48
MD5

ca1302a1f4a4618f831366a6df044621
SHA1

129e07589d0feb1f7f226b50f47c538634ec4791
SHA256

58f831461c8f6baf0ae80f647962ca2878264aa656642569f4653e068662265e
SHA512

0054ec98c4e1d4174ef91a989cd3ef66a965fa186b1b710ba43e151720de7ec895c63311a5e14651ebec746608d5a2fb8ba5af26bd3b58b961e85f1db24bb700
SSDEEP

3072:nPQlw+aEWI0a4qfn8OYnGHMMwLE0GJ+4zItlsj3Jr8e8ht:n4lJWI0a4inYMwLE0HmItlsj39

Score

10^/10

redline d infostealer

Malware Config

Extracted

Family

redline

Botnet

D

C2

173.199.124.134:27677

Attributes

auth_value
0c9d599ca753737d9dfc32da8a266ae5

Targets

- Target
  
  decode_d6a722f5dbabcef62e0109dc231fb34b4383938d30c1bc5a8e9cc4fb5ad20d93.exe
- Size
  
  174KB
- MD5
  
  ca1302a1f4a4618f831366a6df044621
- SHA1
  
  129e07589d0feb1f7f226b50f47c538634ec4791
- SHA256
  
  58f831461c8f6baf0ae80f647962ca2878264aa656642569f4653e068662265e
- SHA512
  
  0054ec98c4e1d4174ef91a989cd3ef66a965fa186b1b710ba43e151720de7ec895c63311a5e14651ebec746608d5a2fb8ba5af26bd3b58b961e85f1db24bb700
- SSDEEP
  
  3072:nPQlw+aEWI0a4qfn8OYnGHMMwLE0GJ+4zItlsj3Jr8e8ht:n4lJWI0a4inYMwLE0HmItlsj39
Score

10^/10

redline d infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

redlinedinfostealer

behavioral2

redlinedinfostealer