Overview

overview

10

Static

static

3

MegaHack V7.exe

windows7-x64

10

MegaHack V7.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    MegaHack V7.exe

  • Size

    263KB

  • Sample

    231126-s5c9jaac5s

  • MD5

    f29dd4244f3ed0da08d836f6e4112b49

  • SHA1

    cc1becae66f2e3e4ab5ea1dbe9337dc55736ea51

  • SHA256

    3e6204d395f683103e11352c34271d61fc3d584840e578f7cd2f0b50950ea6b7

  • SHA512

    7ee5c729f68e11776f500f2937e722e26aace810b827af384b14908b97e6b3cd3ff46e9d2454b212cc933f141460aaf85c6bca6442da474ac8466076e6ad40ef

  • SSDEEP

    6144:gOreCSCVKWPeK5JjqppL50bIFpEa6ei4:gMP1Jj+EaVi4

Score
10/10
redline@soemptyrealinfostealer

Malware Config

Extracted

Family

redline

Botnet

@soemptyreal

C2

45.15.156.155:80

Attributes
  • auth_value

    838b757f26169890585d8f6e6640667d

Targets

    • Target

      MegaHack V7.exe

    • Size

      263KB

    • MD5

      f29dd4244f3ed0da08d836f6e4112b49

    • SHA1

      cc1becae66f2e3e4ab5ea1dbe9337dc55736ea51

    • SHA256

      3e6204d395f683103e11352c34271d61fc3d584840e578f7cd2f0b50950ea6b7

    • SHA512

      7ee5c729f68e11776f500f2937e722e26aace810b827af384b14908b97e6b3cd3ff46e9d2454b212cc933f141460aaf85c6bca6442da474ac8466076e6ad40ef

    • SSDEEP

      6144:gOreCSCVKWPeK5JjqppL50bIFpEa6ei4:gMP1Jj+EaVi4

    Score
    10/10
    redline@soemptyrealinfostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks