Analysis
-
max time kernel
135s -
max time network
147s -
platform
windows7_x64 -
resource
win7-20230712-en -
resource tags
arch:x64arch:x86image:win7-20230712-enlocale:en-usos:windows7-x64system -
submitted
19-08-2023 05:15
Behavioral task
behavioral1
Sample
0x00070000000231ce-181.exe
Resource
win7-20230712-en
windows7-x64
1 signatures
150 seconds
Behavioral task
behavioral2
Sample
0x00070000000231ce-181.exe
Resource
win10v2004-20230703-en
windows10-2004-x64
1 signatures
150 seconds
General
-
Target
0x00070000000231ce-181.exe
-
Size
173KB
-
MD5
e33c22a3bd7488b84398f59a74b0942f
-
SHA1
d387fdf7a01f09c0be1280de4534b7ffb971809b
-
SHA256
d7d94c3e1da62633c96efeb20db2fffdc605a22da260f5dcb559387389291bfe
-
SHA512
0374999eeded3939da354a788909c7caee68a7104b3ed3c9d7aecccb75665934e7059bb4352a6bdbeffcb1944512e8a2ba1fada58c8b0cd2195a50ded54f0655
-
SSDEEP
3072:eTS18qdsI0PBESjOvGew8Z88FQE02quBoeaTJ38e8hr:eTSfsI0PBESOZ88FQE0QoeaTR
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
dugin
C2
77.91.124.73:19071
Attributes
-
auth_value
7c3e46e091100fd26a6076996d374c28
Signatures
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
Processes
Network
- No results found
-
152 B 3
-
152 B 3
-
152 B 3
-
152 B 3
-
152 B 3
-
152 B 3
No results found