redline | 99e6c1e4bd8371c579b880f622beca96aec94cce6fe08a9a1bd8412f4c36fe18 | Triage

Submit
Reports

Overview

overview

Static

static

0x00080000...19.exe

windows7-x64

0x00080000...19.exe

windows10-2004-x64

Sharing

General

Target

0x00080000000132e1-2219.dat
Size

169KB
Sample

240304-psp6sabe28
MD5

b49ea12ce23c180062df37d5c06861b5
SHA1

0fac510214ba203e4f518f7a47f691811f8f17e5
SHA256

99e6c1e4bd8371c579b880f622beca96aec94cce6fe08a9a1bd8412f4c36fe18
SHA512

d5c81d0a560e12e6ff8825bdc113ba03386a4d4d11438c525be8563ab0d0c49a19df10590a458c9364ea17cd688d24ce26a19159df548f9bb1c804d8041f3315
SSDEEP

1536:jyOHBgqlVZRGWQ3ZrrQUYH9izdOzu2dTGqVibuTjNkZOjgAVU83wYke8e8hf:jyOhyTI7YqV2KqZOjgAVUw8e8hf

Score

10^/10

redline diza infostealer

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

0x00080000000132e1-2219.exe

Resource

win7-20240221-en

redline diza infostealer

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

0x00080000000132e1-2219.exe

Resource

win10v2004-20240226-en

redline diza infostealer

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Extracted

Family

redline

Botnet

diza

C2

77.91.124.145:4125

Attributes

auth_value
bbab0d2f0ae4d4fdd6b17077d93b3e80

Targets

- Target
  
  0x00080000000132e1-2219.dat
- Size
  
  169KB
- MD5
  
  b49ea12ce23c180062df37d5c06861b5
- SHA1
  
  0fac510214ba203e4f518f7a47f691811f8f17e5
- SHA256
  
  99e6c1e4bd8371c579b880f622beca96aec94cce6fe08a9a1bd8412f4c36fe18
- SHA512
  
  d5c81d0a560e12e6ff8825bdc113ba03386a4d4d11438c525be8563ab0d0c49a19df10590a458c9364ea17cd688d24ce26a19159df548f9bb1c804d8041f3315
- SSDEEP
  
  1536:jyOHBgqlVZRGWQ3ZrrQUYH9izdOzu2dTGqVibuTjNkZOjgAVU83wYke8e8hf:jyOhyTI7YqV2KqZOjgAVUw8e8hf
Score

10^/10

redline diza infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

redlinedizainfostealer

behavioral2

redlinedizainfostealer

© 2018-2024

Terms | Privacy