Overview

overview

10

Static

static

3

8c05812422...d8.exe

windows7-x64

10

8c05812422...d8.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    8c0581242233161f6a92f8b4b1c9679e3372bf75573ce0eec561f11a3036b4d8

  • Size

    438KB

  • Sample

    241104-3mg5waslej

  • MD5

    bb16083304b831918a8b1ce160ee8b1f

  • SHA1

    9814e81883391035846a4fb925a22813c9bea539

  • SHA256

    8c0581242233161f6a92f8b4b1c9679e3372bf75573ce0eec561f11a3036b4d8

  • SHA512

    9c559f4117167e023954dadaa5daaa09fb26a09dc1c401f60ec445b18899982afe7e4c201d803af227fb602fc4e6f8b1cdd3b2dce0e14aea6cf8c8e854aca01b

  • SSDEEP

    12288:NEqMZp5yIZX2efc4zNUGgxPpTRSRjAHfi5nHTkoPASPQfo/t:R6pYMf5x7GoPAJQ

Score
10/10
redline1discoveryinfostealer

Malware Config

Extracted

Family

redline

Botnet

1

C2

45.9.20.59:46287

Attributes
  • auth_value

    ec6ada170bcec2e72f0e1f3954547f73

Targets

    • Target

      8c0581242233161f6a92f8b4b1c9679e3372bf75573ce0eec561f11a3036b4d8

    • Size

      438KB

    • MD5

      bb16083304b831918a8b1ce160ee8b1f

    • SHA1

      9814e81883391035846a4fb925a22813c9bea539

    • SHA256

      8c0581242233161f6a92f8b4b1c9679e3372bf75573ce0eec561f11a3036b4d8

    • SHA512

      9c559f4117167e023954dadaa5daaa09fb26a09dc1c401f60ec445b18899982afe7e4c201d803af227fb602fc4e6f8b1cdd3b2dce0e14aea6cf8c8e854aca01b

    • SSDEEP

      12288:NEqMZp5yIZX2efc4zNUGgxPpTRSRjAHfi5nHTkoPASPQfo/t:R6pYMf5x7GoPAJQ

    Score
    10/10
    redline1discoveryinfostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine payload

    • Redline family

      redline
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks