Overview

overview

10

Static

static

3

e9c847432c...59.exe

windows7-x64

10

e9c847432c...59.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e9c847432c79b0ca2e7a0558cbafdbf023ee453a6e34447be9f623cf617ba059

  • Size

    297KB

  • Sample

    241106-z686xsyajg

  • MD5

    57d8c5ad90e0fd8606ee20756210087e

  • SHA1

    9668a7a09e0240749142435b3dc71ec0a5e51414

  • SHA256

    e9c847432c79b0ca2e7a0558cbafdbf023ee453a6e34447be9f623cf617ba059

  • SHA512

    0f49d02c85f895f3c7138b6a7afb236ab96347a98c432e225d194eb153cb15db9127b24f845c1c1e87d3204df8b99eec6af9dd26d1839df94d8fb285044c462f

  • SSDEEP

    6144:bHX+iXvoPGKN3MYAXcK6YWo2mYLVe2PRy6u802JJs:b3+iXvoPoYISTLVHZy6zJ

Score
10/10
redline1discoveryinfostealer

Malware Config

Extracted

Family

redline

Botnet

1

C2

45.9.20.59:46287

Attributes
  • auth_value

    ec6ada170bcec2e72f0e1f3954547f73

Targets

    • Target

      e9c847432c79b0ca2e7a0558cbafdbf023ee453a6e34447be9f623cf617ba059

    • Size

      297KB

    • MD5

      57d8c5ad90e0fd8606ee20756210087e

    • SHA1

      9668a7a09e0240749142435b3dc71ec0a5e51414

    • SHA256

      e9c847432c79b0ca2e7a0558cbafdbf023ee453a6e34447be9f623cf617ba059

    • SHA512

      0f49d02c85f895f3c7138b6a7afb236ab96347a98c432e225d194eb153cb15db9127b24f845c1c1e87d3204df8b99eec6af9dd26d1839df94d8fb285044c462f

    • SSDEEP

      6144:bHX+iXvoPGKN3MYAXcK6YWo2mYLVe2PRy6u802JJs:b3+iXvoPoYISTLVHZy6zJ

    Score
    10/10
    redline1discoveryinfostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine payload

    • Redline family

      redline
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks