redline | cd3d877fb255cf900906bb2a47fbeac5cf79d44cfe6bf3d479c81ac7e11711ae | Triage

Sharing

Copy URL Twitter E-mail

General

Target

i4010428.exe
Size

174KB
Sample

230821-fg415aba25
MD5

33abc9f104e93cb1167ecaeb6aa5619a
SHA1

2b55dd7048e24eb85932988ac20e05bba02b3db1
SHA256

cd3d877fb255cf900906bb2a47fbeac5cf79d44cfe6bf3d479c81ac7e11711ae
SHA512

14fe6ffae1f0fd836f1343e61fa01331df6582195236df9b43398ef02404be1e84f645b448fe90c02ab3b08cf647982d7ab362d91d7d7859b0a82bd89e5955ed
SSDEEP

3072:jzyDoUefdkPI0iGEndlOzQnvqmqtlMyNhE04ys4x7sJo8e8hy:fHUjPI0iGEnd2msDNhE09x7su

Score

10^/10

redline jonka infostealer

Malware Config

Extracted

Family

redline

Botnet

jonka

C2

77.91.124.73:19071

Attributes

auth_value
c95bc30cd252fa6dff2a19fd78bfab4e

Targets

- Target
  
  i4010428.exe
- Size
  
  174KB
- MD5
  
  33abc9f104e93cb1167ecaeb6aa5619a
- SHA1
  
  2b55dd7048e24eb85932988ac20e05bba02b3db1
- SHA256
  
  cd3d877fb255cf900906bb2a47fbeac5cf79d44cfe6bf3d479c81ac7e11711ae
- SHA512
  
  14fe6ffae1f0fd836f1343e61fa01331df6582195236df9b43398ef02404be1e84f645b448fe90c02ab3b08cf647982d7ab362d91d7d7859b0a82bd89e5955ed
- SSDEEP
  
  3072:jzyDoUefdkPI0iGEndlOzQnvqmqtlMyNhE04ys4x7sJo8e8hy:fHUjPI0iGEnd2msDNhE09x7su
Score

10^/10

redline jonka infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

redlinejonkainfostealer

behavioral2

redlinejonkainfostealer