Overview

overview

10

Static

static

3

Loader.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Loader.exe

  • Size

    1.4MB

  • Sample

    240819-lyv3fa1cjp

  • MD5

    b524fe05b77d92787cd7e645f187a748

  • SHA1

    e1c2d5b8c48521826550cf5c04c5dcc0d7c9914d

  • SHA256

    e57f3efaba488d392c66f31883f8d697652093ab73675a05a7f982ea80f5ad82

  • SHA512

    7b9113f71956bd4d46772312af6f2bf94cf5dd961064dd072b66306803f50e7af882861e200a4ddf2ce5cbf0ee7f378494844cf0b1c8d5604d6861bce9822ab7

  • SSDEEP

    12288:h2SFIaZJvUd2q94IZR0O7/xXSKGOOb1haKbQ3z2jzBSN0FMTz7QOSJB4MDWHDbUn:h2mIaZ68kVLae1Nw1jX2aOfZJipFtYN

Score
10/10
redline@lljakelldiscoveryinfostealer

Malware Config

Extracted

Family

redline

Botnet

@LlJakell

C2

185.215.113.22:80

Targets

    • Target

      Loader.exe

    • Size

      1.4MB

    • MD5

      b524fe05b77d92787cd7e645f187a748

    • SHA1

      e1c2d5b8c48521826550cf5c04c5dcc0d7c9914d

    • SHA256

      e57f3efaba488d392c66f31883f8d697652093ab73675a05a7f982ea80f5ad82

    • SHA512

      7b9113f71956bd4d46772312af6f2bf94cf5dd961064dd072b66306803f50e7af882861e200a4ddf2ce5cbf0ee7f378494844cf0b1c8d5604d6861bce9822ab7

    • SSDEEP

      12288:h2SFIaZJvUd2q94IZR0O7/xXSKGOOb1haKbQ3z2jzBSN0FMTz7QOSJB4MDWHDbUn:h2mIaZ68kVLae1Nw1jX2aOfZJipFtYN

    Score
    10/10
    redline@lljakelldiscoveryinfostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine payload

    • Loads dropped DLL

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks