redline | e15516fb95201348df8b1e9f60728ca34c5ade83c2c69cc9b884ffe3ac920514 | Triage

Submit
Reports

Overview

overview

Static

static

0x00090000...80.exe

windows7-x64

0x00090000...80.exe

windows10-2004-x64

Sharing

General

Target

0x0009000000012305-2180.dat
Size

168KB
Sample

240304-pzlryabf69
MD5

e72f0f29d66bc6a3b19854f10bcb2d60
SHA1

8e4986b23798240468ad6605523e47440f70654f
SHA256

e15516fb95201348df8b1e9f60728ca34c5ade83c2c69cc9b884ffe3ac920514
SHA512

fc7fac4a57659ee8d01344226dc0400a662605374333d584a1c5d8cc8cf699879d3f3d7baba5a41e0b4ec34d176345e9fb7a5fcca4c336de5c78b7e6480751d9
SSDEEP

1536:jyOHBgqlVZRGWQ3ZrrQUYH9izdOzu2dTGqVibuTjNkZOjgAVU83wYke8e8hf:jyOhyTI7YqV2KqZOjgAVUw8e8hf

Score

10^/10

redline diza infostealer

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

0x0009000000012305-2180.exe

Resource

win7-20240220-en

redline diza infostealer

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

0x0009000000012305-2180.exe

Resource

win10v2004-20240226-en

redline diza infostealer

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Extracted

Family

redline

Botnet

diza

C2

77.91.124.145:4125

Attributes

auth_value
bbab0d2f0ae4d4fdd6b17077d93b3e80

Targets

- Target
  
  0x0009000000012305-2180.dat
- Size
  
  168KB
- MD5
  
  e72f0f29d66bc6a3b19854f10bcb2d60
- SHA1
  
  8e4986b23798240468ad6605523e47440f70654f
- SHA256
  
  e15516fb95201348df8b1e9f60728ca34c5ade83c2c69cc9b884ffe3ac920514
- SHA512
  
  fc7fac4a57659ee8d01344226dc0400a662605374333d584a1c5d8cc8cf699879d3f3d7baba5a41e0b4ec34d176345e9fb7a5fcca4c336de5c78b7e6480751d9
- SSDEEP
  
  1536:jyOHBgqlVZRGWQ3ZrrQUYH9izdOzu2dTGqVibuTjNkZOjgAVU83wYke8e8hf:jyOhyTI7YqV2KqZOjgAVUw8e8hf
Score

10^/10

redline diza infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

redlinedizainfostealer

behavioral2

redlinedizainfostealer

© 2018-2024

Terms | Privacy