Overview

overview

10

Static

static

3

f463e39d85...f3.exe

windows7-x64

10

f463e39d85...f3.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    dae267a50070442a282ea25e2af3a4fb1dcc34294bf29e900ac837b07fbd989e

  • Size

    238KB

  • Sample

    241108-faj3dawcmr

  • MD5

    aaacaa7cc24d12f64aa904f0fb0c42fd

  • SHA1

    802f5b9c2fff86de6e38d43c8558249afc9631af

  • SHA256

    dae267a50070442a282ea25e2af3a4fb1dcc34294bf29e900ac837b07fbd989e

  • SHA512

    8c880b6335b0fdb14a7291266f0359a924f72bcc81ca92600f64eab9de0665a3cbefe926807814689f0be2c69086cea177bb7283da0f6e2c6be5369d67be3dbb

  • SSDEEP

    6144:DkJhk+xiA36MEb+kZ+vJq4RxzJHTuc8oRd2:CtxiAKMEb+y+BhBJzs

Score
10/10
redline1discoveryinfostealer

Malware Config

Extracted

Family

redline

Botnet

1

C2

136.244.82.241:4188

Attributes
  • auth_value

    c1ae9e1628951cbde9897f0f9af5fcbc

Targets

    • Target

      f463e39d85bbf02b9b894a1a772e806c25af685b6a8bfbbda945a08f22e25ff3.exe

    • Size

      302KB

    • MD5

      2809ef6236605bb707a61bc0470561a5

    • SHA1

      1bbb472da67f7a2ba7d01002e1b54f386d6b9937

    • SHA256

      f463e39d85bbf02b9b894a1a772e806c25af685b6a8bfbbda945a08f22e25ff3

    • SHA512

      cd9d3ba2e0a9d23468ae8d9b41ceb678ef8130fc2beeab63c583ca90a9de15258a92fc7de72f7a26fde2efb59b7b6224e3dbcd80a4779f76031a904fe4fc2a21

    • SSDEEP

      6144:AFhBMuMXa0srtPwRsyAp/OSKPP17IUIdJGHzFOAK:ejMuka0sBwRQG1kPdJGDK

    Score
    10/10
    redline1discoveryinfostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine payload

    • Redline family

      redline
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks