redline | 7342989aa6ca133ca5e95303c5a30f2da75ccebc8166b2d5253eb562ec8b7678 | Triage

Submit
Reports

Overview

overview

Static

static

0x00080000...78.exe

windows7-x64

0x00080000...78.exe

windows10-2004-x64

Sharing

General

Target

0x0008000000013392-78.dat
Size

172KB
Sample

240311-xkq24sdc88
MD5

75882eb647824c5bece89052e5d68457
SHA1

8107eeb9d4b459add2d918c2984e0f72a8aa5765
SHA256

7342989aa6ca133ca5e95303c5a30f2da75ccebc8166b2d5253eb562ec8b7678
SHA512

b443124e3e0c01fe6ad13d79ec3b49baaba16781f046c80cd48f8bdf9a8cf28c57fe4e962dada3d4a217466b8a472b8e90dd11aded0ba82595f2f58494266c29
SSDEEP

3072:PZ+q6hVbwIxxiIDg8qAxNKcbMhQ4k9o8e8hi:PZ+q6P7ihjB654k9o

Score

10^/10

redline diza infostealer

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

0x0008000000013392-78.exe

Resource

win7-20240221-en

redline diza infostealer

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

0x0008000000013392-78.exe

Resource

win10v2004-20240226-en

redline diza infostealer

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Extracted

Family

redline

Botnet

diza

C2

83.97.73.130:19061

Attributes

auth_value
0d09b419c8bc967f91c68be4a17e92ee

Targets

- Target
  
  0x0008000000013392-78.dat
- Size
  
  172KB
- MD5
  
  75882eb647824c5bece89052e5d68457
- SHA1
  
  8107eeb9d4b459add2d918c2984e0f72a8aa5765
- SHA256
  
  7342989aa6ca133ca5e95303c5a30f2da75ccebc8166b2d5253eb562ec8b7678
- SHA512
  
  b443124e3e0c01fe6ad13d79ec3b49baaba16781f046c80cd48f8bdf9a8cf28c57fe4e962dada3d4a217466b8a472b8e90dd11aded0ba82595f2f58494266c29
- SSDEEP
  
  3072:PZ+q6hVbwIxxiIDg8qAxNKcbMhQ4k9o8e8hi:PZ+q6P7ihjB654k9o
Score

10^/10

redline diza infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

redlinedizainfostealer

behavioral2

redlinedizainfostealer

© 2018-2024

Terms | Privacy