redline | a46dc539214fc31a15868ee1e29521fe2ffe1e328d4fa1f4bdc8b57940db6d7e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

test_app_crypted.exe
Size

237KB
Sample

231011-nmx4rsea53
MD5

da6b23d9ae0d353284bf690c0a1b52e3
SHA1

bae61202e56933a3e473154c1217062832377dd0
SHA256

a46dc539214fc31a15868ee1e29521fe2ffe1e328d4fa1f4bdc8b57940db6d7e
SHA512

65bc955501dbf810b75f8c78d4940b5bf94b82ac9d6cc29e2157ec289acb3e4e71fded65e183177e4ead6afc7cf514797507c5031674d550817a54016e7aa91b
SSDEEP

6144:7RamXSrBX0QvY+HviNY+FpOLgoB12UuZEPKqRI/e9:FOr3vY+HvGTO8oB6qRI/

Score

10^/10

redline dodik infostealer

Malware Config

Extracted

Family

redline

Botnet

Dodik

C2

62.84.98.14:8599

Attributes

auth_value
377b3e8fd841293c888daf3412230c21

Targets

- Target
  
  test_app_crypted.exe
- Size
  
  237KB
- MD5
  
  da6b23d9ae0d353284bf690c0a1b52e3
- SHA1
  
  bae61202e56933a3e473154c1217062832377dd0
- SHA256
  
  a46dc539214fc31a15868ee1e29521fe2ffe1e328d4fa1f4bdc8b57940db6d7e
- SHA512
  
  65bc955501dbf810b75f8c78d4940b5bf94b82ac9d6cc29e2157ec289acb3e4e71fded65e183177e4ead6afc7cf514797507c5031674d550817a54016e7aa91b
- SSDEEP
  
  6144:7RamXSrBX0QvY+HviNY+FpOLgoB12UuZEPKqRI/e9:FOr3vY+HvGTO8oB6qRI/
Score

10^/10

redline dodik infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

redlinedodikinfostealer

behavioral2

redlinedodikinfostealer