Overview

overview

10

Static

static

3

72b0f1d546...7d.exe

windows7-x64

10

72b0f1d546...7d.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    72b0f1d546582ea63e402ae0615c04661e04e76d8255e8b6e194be922c782c7d

  • Size

    298KB

  • Sample

    241108-2ex1patnhn

  • MD5

    709d1e908a59206967036dc133290b90

  • SHA1

    60bd9181cd8c022c453b83471bb5cfe95f2063b6

  • SHA256

    72b0f1d546582ea63e402ae0615c04661e04e76d8255e8b6e194be922c782c7d

  • SHA512

    7437ff7d7f5d3a9d1fdf7f88b9e0254a4801c387365a199d694e929dbb750eea1d080a1aaf41c827367c922bd2fe8516e12a77ba627dea87c34416ec38b867f1

  • SSDEEP

    6144:52ECIjjW+LuLIe0T1eXwp8bXk3X4G1cmL2Gp2eT:5FCIjjW6vTHcmLxAe

Score
10/10
redline1discoveryinfostealer

Malware Config

Extracted

Family

redline

Botnet

1

C2

45.9.20.59:46287

Attributes
  • auth_value

    ec6ada170bcec2e72f0e1f3954547f73

Targets

    • Target

      72b0f1d546582ea63e402ae0615c04661e04e76d8255e8b6e194be922c782c7d

    • Size

      298KB

    • MD5

      709d1e908a59206967036dc133290b90

    • SHA1

      60bd9181cd8c022c453b83471bb5cfe95f2063b6

    • SHA256

      72b0f1d546582ea63e402ae0615c04661e04e76d8255e8b6e194be922c782c7d

    • SHA512

      7437ff7d7f5d3a9d1fdf7f88b9e0254a4801c387365a199d694e929dbb750eea1d080a1aaf41c827367c922bd2fe8516e12a77ba627dea87c34416ec38b867f1

    • SSDEEP

      6144:52ECIjjW+LuLIe0T1eXwp8bXk3X4G1cmL2Gp2eT:5FCIjjW6vTHcmLxAe

    Score
    10/10
    redline1discoveryinfostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine payload

    • Redline family

      redline
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks