General

  • Target

    Redengine Crack.exe

  • Size

    17.0MB

  • Sample

    240619-kevf5a1hkn

  • MD5

    ab167bc1cb763ad2cfdfc86ee45b9f22

  • SHA1

    03c9e4fe5f1b789adae9ea0f91789c8ad58aa10c

  • SHA256

    2da8c55da46f148005b1b6eb5eaf231091b9f05ce4f73085abea04c242d77af4

  • SHA512

    f39cdba1aab81ee29ea44e21857abf5a51a70887ca476768a5abdcd38a721d2fd51915e356c925946d5837a749c4df7229c875b2efe5831f5c3ec4f2545b9d42

  • SSDEEP

    393216:UxAhZ1FeREWOL2Vmd6m7/m3pz0GzajJBfrSsvItRzxFHkhy7Yc:Um7jeRayVmdRKDEJB2sQtxxFE8

Malware Config

Targets

    • Target

      Redengine Crack.exe

    • Size

      17.0MB

    • MD5

      ab167bc1cb763ad2cfdfc86ee45b9f22

    • SHA1

      03c9e4fe5f1b789adae9ea0f91789c8ad58aa10c

    • SHA256

      2da8c55da46f148005b1b6eb5eaf231091b9f05ce4f73085abea04c242d77af4

    • SHA512

      f39cdba1aab81ee29ea44e21857abf5a51a70887ca476768a5abdcd38a721d2fd51915e356c925946d5837a749c4df7229c875b2efe5831f5c3ec4f2545b9d42

    • SSDEEP

      393216:UxAhZ1FeREWOL2Vmd6m7/m3pz0GzajJBfrSsvItRzxFHkhy7Yc:Um7jeRayVmdRKDEJB2sQtxxFE8

    Score
    7/10
    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Accesses cryptocurrency files/wallets, possible credential harvesting

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

MITRE ATT&CK Enterprise v15

Tasks