Overview

overview

10

Static

static

3

d0f4f4ec1d...f9.exe

windows7-x64

10

d0f4f4ec1d...f9.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d0f4f4ec1d9e45cac391d25e6ebe045e67953243464e70c0d73fab9aa4d93df9

  • Size

    423KB

  • Sample

    241106-1qatvsydkb

  • MD5

    7c36a262694145430a2d8087a93cd001

  • SHA1

    44b14ec13762496a4932c25fce578fe0a676c61f

  • SHA256

    d0f4f4ec1d9e45cac391d25e6ebe045e67953243464e70c0d73fab9aa4d93df9

  • SHA512

    9e7325f501c4e1ccdc347e6409863d5b512762b0d5117a890e04f50c9f36cf0c0a413f694a78c8275d62f72b2664dcbf9cf4ebd5b617250e8a9df2517f2ce43f

  • SSDEEP

    6144:zKfV9DPD5ZU4u3ea/vVYSyW9Jhh4V1EzUhLkYFdk4elBPhSfai:zmVxb5a4u3eI2Sy/V1EzUhLkielBPD

Score
10/10
redline1discoveryinfostealer

Malware Config

Extracted

Family

redline

Botnet

1

C2

45.9.20.59:46287

Attributes
  • auth_value

    ec6ada170bcec2e72f0e1f3954547f73

Targets

    • Target

      d0f4f4ec1d9e45cac391d25e6ebe045e67953243464e70c0d73fab9aa4d93df9

    • Size

      423KB

    • MD5

      7c36a262694145430a2d8087a93cd001

    • SHA1

      44b14ec13762496a4932c25fce578fe0a676c61f

    • SHA256

      d0f4f4ec1d9e45cac391d25e6ebe045e67953243464e70c0d73fab9aa4d93df9

    • SHA512

      9e7325f501c4e1ccdc347e6409863d5b512762b0d5117a890e04f50c9f36cf0c0a413f694a78c8275d62f72b2664dcbf9cf4ebd5b617250e8a9df2517f2ce43f

    • SSDEEP

      6144:zKfV9DPD5ZU4u3ea/vVYSyW9Jhh4V1EzUhLkYFdk4elBPhSfai:zmVxb5a4u3eI2Sy/V1EzUhLkielBPD

    Score
    10/10
    redline1discoveryinfostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine payload

    • Redline family

      redline
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks