redline | a5354a42ddb6004f32e0c0a7a6140d290738d857919a9629b0c2f742464f9e44 | Triage

Submit
Reports

Overview

overview

Static

static

0x00060000...57.exe

windows7-x64

0x00060000...57.exe

windows10-2004-x64

Sharing

General

Target

0x0006000000015491-2257.dat
Size

168KB
Sample

240305-kym66aca27
MD5

119f099ac1c47b7cf6af0aebf3502617
SHA1

f5e339ac4a2ee17be071a2029b63f9dd159afd70
SHA256

a5354a42ddb6004f32e0c0a7a6140d290738d857919a9629b0c2f742464f9e44
SHA512

5b24e35a386550fbda7e1fe7740bca214c54d95a704a65c45401e63f1eae1f390a5828fef184f98db48546ab8ba0c8b4020bada2e6e2d2e57bfb48ef7ca00553
SSDEEP

1536:yiwRHYqlVZRGW6zgHr4Y4JxMGztAxzbTGqV+buUngUtWfD5383wYkF8e8hP:WJIHlbWMqVKIdD53X8e8hP

Score

10^/10

redline diza infostealer

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

0x0006000000015491-2257.exe

Resource

win7-20240221-en

redline diza infostealer

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

0x0006000000015491-2257.exe

Resource

win10v2004-20240226-en

redline diza infostealer

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Extracted

Family

redline

Botnet

diza

C2

185.161.248.150:4128

Attributes

auth_value
0d09b419c8bc967f91c68be4a17e92ee

Targets

- Target
  
  0x0006000000015491-2257.dat
- Size
  
  168KB
- MD5
  
  119f099ac1c47b7cf6af0aebf3502617
- SHA1
  
  f5e339ac4a2ee17be071a2029b63f9dd159afd70
- SHA256
  
  a5354a42ddb6004f32e0c0a7a6140d290738d857919a9629b0c2f742464f9e44
- SHA512
  
  5b24e35a386550fbda7e1fe7740bca214c54d95a704a65c45401e63f1eae1f390a5828fef184f98db48546ab8ba0c8b4020bada2e6e2d2e57bfb48ef7ca00553
- SSDEEP
  
  1536:yiwRHYqlVZRGW6zgHr4Y4JxMGztAxzbTGqV+buUngUtWfD5383wYkF8e8hP:WJIHlbWMqVKIdD53X8e8hP
Score

10^/10

redline diza infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

redlinedizainfostealer

behavioral2

redlinedizainfostealer

© 2018-2024

Terms | Privacy