Overview

overview

10

Static

static

3

8aa7a40b8f...62.exe

windows7-x64

10

8aa7a40b8f...62.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    8aa7a40b8f8c979e35a37bce04f633c7be191e8450320033f2c5e121435f4062

  • Size

    438KB

  • Sample

    241107-kqqmba1rhm

  • MD5

    1fe10f5c193734c9a5b959b0a8b6a51a

  • SHA1

    79d4900fc9b74a9ea5963b623465773e13200530

  • SHA256

    8aa7a40b8f8c979e35a37bce04f633c7be191e8450320033f2c5e121435f4062

  • SHA512

    442934675bcc83edb82309530841cc1d00725488eaf741ec4ff29fdf9c79724c11f9c8da859fa7ab2b60cc7578ba8ab88d5706af4ab9bcc4987c80f833bd4ec1

  • SSDEEP

    12288:wqkdKtC4xiAqjop8iDPRSRjAHzi5nHbZRK8nPyy3eBPno:1cqxx1p8LK8KQc

Score
10/10
redline1discoveryinfostealer

Malware Config

Extracted

Family

redline

Botnet

1

C2

45.9.20.59:46287

Attributes
  • auth_value

    ec6ada170bcec2e72f0e1f3954547f73

Targets

    • Target

      8aa7a40b8f8c979e35a37bce04f633c7be191e8450320033f2c5e121435f4062

    • Size

      438KB

    • MD5

      1fe10f5c193734c9a5b959b0a8b6a51a

    • SHA1

      79d4900fc9b74a9ea5963b623465773e13200530

    • SHA256

      8aa7a40b8f8c979e35a37bce04f633c7be191e8450320033f2c5e121435f4062

    • SHA512

      442934675bcc83edb82309530841cc1d00725488eaf741ec4ff29fdf9c79724c11f9c8da859fa7ab2b60cc7578ba8ab88d5706af4ab9bcc4987c80f833bd4ec1

    • SSDEEP

      12288:wqkdKtC4xiAqjop8iDPRSRjAHzi5nHbZRK8nPyy3eBPno:1cqxx1p8LK8KQc

    Score
    10/10
    redline1discoveryinfostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine payload

    • Redline family

      redline
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks