Overview

overview

10

Static

static

3

dcef62b1b7...c9.exe

windows7-x64

10

dcef62b1b7...c9.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    dcef62b1b7d4b44126394e485db504c9

  • Size

    3.0MB

  • Sample

    230822-g9jrbsbh9y

  • MD5

    dcef62b1b7d4b44126394e485db504c9

  • SHA1

    8550b1b600151b52088bd63ce7eeee533b81ff56

  • SHA256

    7388f2a95e0841dd6bd2d202ee7249c605a53bcc8b3716fea383731cd5826772

  • SHA512

    568236b1902210f4d3edf19b01e456f2144421e22f0cbb4c6738d3c29da1e5bef97c1e1f24b9a39419e961425f77e258102e3c03deb9710b138a189e5511d17d

  • SSDEEP

    6144:2GmWmLFEFK2iNQHCuAzd3sU1OI+IkEUnGOiBSoeFt8JSWuPf:2JWmLFEFUapLbUOiBSo4tkSWuPf

Score
10/10
redlineinfostealer

Malware Config

Extracted

Family

redline

C2

23.27.163.212:20482

Attributes
  • auth_value

    dc5f0f8905e9ba86860f9a835555be70

Targets

    • Target

      dcef62b1b7d4b44126394e485db504c9

    • Size

      3.0MB

    • MD5

      dcef62b1b7d4b44126394e485db504c9

    • SHA1

      8550b1b600151b52088bd63ce7eeee533b81ff56

    • SHA256

      7388f2a95e0841dd6bd2d202ee7249c605a53bcc8b3716fea383731cd5826772

    • SHA512

      568236b1902210f4d3edf19b01e456f2144421e22f0cbb4c6738d3c29da1e5bef97c1e1f24b9a39419e961425f77e258102e3c03deb9710b138a189e5511d17d

    • SSDEEP

      6144:2GmWmLFEFK2iNQHCuAzd3sU1OI+IkEUnGOiBSoeFt8JSWuPf:2JWmLFEFUapLbUOiBSo4tkSWuPf

    Score
    10/10
    redlineinfostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks