Overview

overview

10

Static

static

3

b8887a77f7...7a.exe

windows7-x64

10

b8887a77f7...7a.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b8887a77f7b4b30b02349ae25563204a758edc14365fc100884534fd4229147a

  • Size

    438KB

  • Sample

    241108-sp9ykaxjhq

  • MD5

    e31668e4ef4fdb0942f69cde4418349f

  • SHA1

    0aa1521a356b8ecac493cddfdb744c1a1cf22090

  • SHA256

    b8887a77f7b4b30b02349ae25563204a758edc14365fc100884534fd4229147a

  • SHA512

    ce0d4e1971fcfbd6a2a4d8eabd2dc517bda29d80c6808b1a0c638bcf4c62c286065ae7834a18b3da65c1d0a1a3defa583bbc934d8afef8c3e6b9c21f91ea2edc

  • SSDEEP

    12288:wqkdKtC4xiAqjop8iDPRSRjAHzi5nHbZRK8nPyy3eBPno:1cqxx1p8LK8KQc

Score
10/10
redline1discoveryinfostealer

Malware Config

Extracted

Family

redline

Botnet

1

C2

45.9.20.59:46287

Attributes
  • auth_value

    ec6ada170bcec2e72f0e1f3954547f73

Targets

    • Target

      b8887a77f7b4b30b02349ae25563204a758edc14365fc100884534fd4229147a

    • Size

      438KB

    • MD5

      e31668e4ef4fdb0942f69cde4418349f

    • SHA1

      0aa1521a356b8ecac493cddfdb744c1a1cf22090

    • SHA256

      b8887a77f7b4b30b02349ae25563204a758edc14365fc100884534fd4229147a

    • SHA512

      ce0d4e1971fcfbd6a2a4d8eabd2dc517bda29d80c6808b1a0c638bcf4c62c286065ae7834a18b3da65c1d0a1a3defa583bbc934d8afef8c3e6b9c21f91ea2edc

    • SSDEEP

      12288:wqkdKtC4xiAqjop8iDPRSRjAHzi5nHbZRK8nPyy3eBPno:1cqxx1p8LK8KQc

    Score
    10/10
    redline1discoveryinfostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine payload

    • Redline family

      redline
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks