General

  • Target

    c7ddf37636aace600910ae764f8eb50443c414bde9f0917b76ca27a4e863a733.exe

  • Size

    300KB

  • Sample

    240708-bs5pkswbkl

  • MD5

    803f1d34c882d37972a4b2bc59499dc2

  • SHA1

    b7e7600ee7bc12257b9cd7b52af7007510adb64c

  • SHA256

    c7ddf37636aace600910ae764f8eb50443c414bde9f0917b76ca27a4e863a733

  • SHA512

    015478db6340c438d250bdbc4e234ceca782b081fe42aeb0f73931ca76aed444b504d3e2cb221898a3e9798df2b64f0bc798b3c886fbc456cbb003c87a16906d

  • SSDEEP

    3072:+cZqf7D34Mp/0+mAQkygQAQEgTLB1fA0PuTVAtkxzt3RQeqiOL2bBOA:+cZqf7DI0nyzjB1fA0GTV8kPwL

Score
10/10

Malware Config

Extracted

Family

redline

Botnet

VIP

C2

173.195.100.68:1912

Targets

    • Target

      c7ddf37636aace600910ae764f8eb50443c414bde9f0917b76ca27a4e863a733.exe

    • Size

      300KB

    • MD5

      803f1d34c882d37972a4b2bc59499dc2

    • SHA1

      b7e7600ee7bc12257b9cd7b52af7007510adb64c

    • SHA256

      c7ddf37636aace600910ae764f8eb50443c414bde9f0917b76ca27a4e863a733

    • SHA512

      015478db6340c438d250bdbc4e234ceca782b081fe42aeb0f73931ca76aed444b504d3e2cb221898a3e9798df2b64f0bc798b3c886fbc456cbb003c87a16906d

    • SSDEEP

      3072:+cZqf7D34Mp/0+mAQkygQAQEgTLB1fA0PuTVAtkxzt3RQeqiOL2bBOA:+cZqf7DI0nyzjB1fA0GTV8kPwL

    Score
    10/10
    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

MITRE ATT&CK Matrix

Tasks