redline | e74b5e368149f5c103feb2ad33a2267235a4c13bf3e3fdde5b956ab827b3de34 | Triage

Submit
Reports

Overview

overview

Static

static

e74b5e3681...34.exe

windows7-x64

1

e74b5e3681...34.exe

windows10-2004-x64

5

Sharing

General

Target

e74b5e368149f5c103feb2ad33a2267235a4c13bf3e3fdde5b956ab827b3de34
Size

172KB
Sample

240523-ewq75sdf83
MD5

5ab9020c587ea4e5edf9e9d4097243da
SHA1

fe95d868be7ae298c0bb7229667ce02af15ef199
SHA256

e74b5e368149f5c103feb2ad33a2267235a4c13bf3e3fdde5b956ab827b3de34
SHA512

047aa57cc15e13741f19f0e215d30ce2d1a60ec2ed38c9099fa29d9aed86ec036a2d45fc1b1d23d0a45302f7832aab37d518bbce59dc0cec7477564af9c84565
SSDEEP

3072:T+CgncfnivAgLNbcxNdydiyM4ROkmn8e8hx:Tv5hsKmM4ROkmn

Score

10^/10

redline sheron microsoft phishing

Static task

static1

4 signatures

Behavioral task

behavioral1

Sample

e74b5e368149f5c103feb2ad33a2267235a4c13bf3e3fdde5b956ab827b3de34.exe

Resource

win7-20231129-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

e74b5e368149f5c103feb2ad33a2267235a4c13bf3e3fdde5b956ab827b3de34.exe

Resource

win10v2004-20240508-en

microsoft phishing

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Extracted

Family

redline

Botnet

sheron

C2

83.97.73.129:19068

Attributes

auth_value
2d067e7e2372227d3a03b335260112e9

Targets

- Target
  
  e74b5e368149f5c103feb2ad33a2267235a4c13bf3e3fdde5b956ab827b3de34
- Size
  
  172KB
- MD5
  
  5ab9020c587ea4e5edf9e9d4097243da
- SHA1
  
  fe95d868be7ae298c0bb7229667ce02af15ef199
- SHA256
  
  e74b5e368149f5c103feb2ad33a2267235a4c13bf3e3fdde5b956ab827b3de34
- SHA512
  
  047aa57cc15e13741f19f0e215d30ce2d1a60ec2ed38c9099fa29d9aed86ec036a2d45fc1b1d23d0a45302f7832aab37d518bbce59dc0cec7477564af9c84565
- SSDEEP
  
  3072:T+CgncfnivAgLNbcxNdydiyM4ROkmn8e8hx:Tv5hsKmM4ROkmn
Score

5^/10

microsoft phishing
- Detected potential entity reuse from brand microsoft.
  phishing microsoft
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

microsoftphishing

© 2018-2024

Terms | Privacy