redline | 64989754f83d4a28bec55ab7663f3b347b8c11a6175a5bb0aeec358e59f58e8f | Triage

Sharing

General

Target

h0416391.exe
Size

174KB
Sample

231004-hzs3pahh3w
MD5

3490d47f19fe14d322491487ce1b68e5
SHA1

8d81acd2e36d9cfe88a7a96df81401d9d2d65fc4
SHA256

64989754f83d4a28bec55ab7663f3b347b8c11a6175a5bb0aeec358e59f58e8f
SHA512

ac02043038a2c1533513d20f797d2d87ee026f276213a5b08632589d32fefcd86b32720aa76ba044f0cee710e4df5b81a2351c617dbd45f980c5a2acd52599a2
SSDEEP

3072:YQx3u/I3uI0qRjH/AUOzblVuQmHMOKE0s3CqFJU4JQ8e8hD:Y035uI0qRjH6mLKE0ZAJU42

Score

10^/10

redline luska infostealer

Malware Config

Extracted

Family

redline

Botnet

luska

C2

77.91.124.55:19071

Attributes

auth_value
a6797888f51a88afbfd8854a79ac9357

Targets

- Target
  
  h0416391.exe
- Size
  
  174KB
- MD5
  
  3490d47f19fe14d322491487ce1b68e5
- SHA1
  
  8d81acd2e36d9cfe88a7a96df81401d9d2d65fc4
- SHA256
  
  64989754f83d4a28bec55ab7663f3b347b8c11a6175a5bb0aeec358e59f58e8f
- SHA512
  
  ac02043038a2c1533513d20f797d2d87ee026f276213a5b08632589d32fefcd86b32720aa76ba044f0cee710e4df5b81a2351c617dbd45f980c5a2acd52599a2
- SSDEEP
  
  3072:YQx3u/I3uI0qRjH/AUOzblVuQmHMOKE0s3CqFJU4JQ8e8hD:Y035uI0qRjH6mLKE0ZAJU42
Score

10^/10

redline luska infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

redlineluskainfostealer

behavioral2

redlineluskainfostealer