Overview

overview

10

Static

static

1

Desktop.rar

windows7-x64

Desktop.rar

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    Desktop.rar

  • Size

    949KB

  • Sample

    240611-y8ejnazhnb

  • MD5

    82f3a7d69dde51b6adcfb4d7fdbb70e9

  • SHA1

    3c657d900a08fa5bf07914c754dad96b6c8b5691

  • SHA256

    d4fb8c93c3385ecb920378145e7ee77014da736e961db6211c6a06fa2b3eb287

  • SHA512

    64b967c4df2d89b4bb900f811d528c02cb7a5e98f3aa3e93717d523157992a63fe0583a59af986f12b6c782837eac3b9bd1e5cadc4eafc55fccf207d6f30e338

  • SSDEEP

    24576:18Xm9oEn4KQz1j3vzK2VaFBiUqY8b0BUNC7iSx7uB/:18XiPvQhrvT8wU3g0eCZx7uJ

Score
10/10
redlinenegrikinfostealer

Malware Config

Extracted

Family

redline

Botnet

negrik

C2

193.233.255.34:1111

Targets

    • Target

      Desktop.rar

    • Size

      949KB

    • MD5

      82f3a7d69dde51b6adcfb4d7fdbb70e9

    • SHA1

      3c657d900a08fa5bf07914c754dad96b6c8b5691

    • SHA256

      d4fb8c93c3385ecb920378145e7ee77014da736e961db6211c6a06fa2b3eb287

    • SHA512

      64b967c4df2d89b4bb900f811d528c02cb7a5e98f3aa3e93717d523157992a63fe0583a59af986f12b6c782837eac3b9bd1e5cadc4eafc55fccf207d6f30e338

    • SSDEEP

      24576:18Xm9oEn4KQz1j3vzK2VaFBiUqY8b0BUNC7iSx7uB/:18XiPvQhrvT8wU3g0eCZx7uJ

    Score
    10/10
    redlinenegrikinfostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine payload

    • Executes dropped EXE

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks