Overview

overview

10

Static

static

3

ee41217fce...94.exe

windows7-x64

10

ee41217fce...94.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ee41217fcee642ab5b8151cf2c8bed8f5bf2a3e6468b0b0686afe1b4ea618594

  • Size

    297KB

  • Sample

    241105-ysdbnaxdmf

  • MD5

    283d2e274dcef1b24041c4244775d0fe

  • SHA1

    68df6f863f057691579252f53c47e6cd7331f4cc

  • SHA256

    ee41217fcee642ab5b8151cf2c8bed8f5bf2a3e6468b0b0686afe1b4ea618594

  • SHA512

    8cec42b40173601aeabad1403bde257e631418c8a813028c5628d3658afc848ffcc5bf42896e9e86aade4436ff184997627c305a692d77699ad6d25baad4979b

  • SSDEEP

    6144:UvHwCMbovF9JUKbHGTRfcfX1m3fbGKUBjcFPx76COzuS92:UPwCMbovF9JUKrGTRVCKajcfgzu

Score
10/10
redline1discoveryinfostealer

Malware Config

Extracted

Family

redline

Botnet

1

C2

45.9.20.59:46287

Attributes
  • auth_value

    ec6ada170bcec2e72f0e1f3954547f73

Targets

    • Target

      ee41217fcee642ab5b8151cf2c8bed8f5bf2a3e6468b0b0686afe1b4ea618594

    • Size

      297KB

    • MD5

      283d2e274dcef1b24041c4244775d0fe

    • SHA1

      68df6f863f057691579252f53c47e6cd7331f4cc

    • SHA256

      ee41217fcee642ab5b8151cf2c8bed8f5bf2a3e6468b0b0686afe1b4ea618594

    • SHA512

      8cec42b40173601aeabad1403bde257e631418c8a813028c5628d3658afc848ffcc5bf42896e9e86aade4436ff184997627c305a692d77699ad6d25baad4979b

    • SSDEEP

      6144:UvHwCMbovF9JUKbHGTRfcfX1m3fbGKUBjcFPx76COzuS92:UPwCMbovF9JUKrGTRVCKajcfgzu

    Score
    10/10
    redline1discoveryinfostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine payload

    • Redline family

      redline
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks