Overview

overview

10

Static

static

3

90278a9545...a6.exe

windows7-x64

10

90278a9545...a6.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    90278a95455df9747aac7adf1778b45836b6e1b82f582bbbad0c44463d12f7a6

  • Size

    442KB

  • Sample

    241104-xngmvawbjq

  • MD5

    a5d2f343f04357d4972f362fa4a552ca

  • SHA1

    3c25eb378eef2264b914f9e36b0dc05bfc0a573c

  • SHA256

    90278a95455df9747aac7adf1778b45836b6e1b82f582bbbad0c44463d12f7a6

  • SHA512

    9c6008fa5ac990df95413e9713f3d6cc3363eb70e78c0eb6c6b8fbbcbaf460888871df1de999309fdc05fc281eb8be8f635c4d33b6baf00a4bf5abbb6476f4c3

  • SSDEEP

    6144:TmdckoOVAQwglvkNo1cThqGhCV3YDd+DG0XYPfbW7yV1O7TC/d:TmScV4VNo1cTNha3YDd+DG0XYa701Ov

Score
10/10
redline1discoveryinfostealer

Malware Config

Extracted

Family

redline

Botnet

1

C2

45.9.20.59:46287

Attributes
  • auth_value

    ec6ada170bcec2e72f0e1f3954547f73

Targets

    • Target

      90278a95455df9747aac7adf1778b45836b6e1b82f582bbbad0c44463d12f7a6

    • Size

      442KB

    • MD5

      a5d2f343f04357d4972f362fa4a552ca

    • SHA1

      3c25eb378eef2264b914f9e36b0dc05bfc0a573c

    • SHA256

      90278a95455df9747aac7adf1778b45836b6e1b82f582bbbad0c44463d12f7a6

    • SHA512

      9c6008fa5ac990df95413e9713f3d6cc3363eb70e78c0eb6c6b8fbbcbaf460888871df1de999309fdc05fc281eb8be8f635c4d33b6baf00a4bf5abbb6476f4c3

    • SSDEEP

      6144:TmdckoOVAQwglvkNo1cThqGhCV3YDd+DG0XYPfbW7yV1O7TC/d:TmScV4VNo1cTNha3YDd+DG0XYa701Ov

    Score
    10/10
    redline1discoveryinfostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine payload

    • Redline family

      redline
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks