Overview

overview

10

Static

static

3

738b1b9533...ab.exe

windows7-x64

10

738b1b9533...ab.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    738b1b953356a26fe1eb27b386bd9a1a2d13ce004176584c1d33ef11d1de7cab

  • Size

    370KB

  • Sample

    241108-xblq2azmak

  • MD5

    80d21448ab24f32d95636fc4bfcc9dd3

  • SHA1

    83eeff289f191b3cbd6c673a190520060797b874

  • SHA256

    738b1b953356a26fe1eb27b386bd9a1a2d13ce004176584c1d33ef11d1de7cab

  • SHA512

    bf326edd10c2dda51eec0f4611f9bd6a84f2db3a3855d4b17f2b48812c36ee05304033a68dc9957d726bf8b93e95119709f54779625611ebb3dd66f9e927c5fb

  • SSDEEP

    6144:5aq04PVZTOVCKCvwhMxR2HqOvobcjgw3DBMN9S0WLBfgb7ITsqXigaXwVfi:5aq04PvJDwex4HqTbckoti9wtfA7R

Score
10/10
redline1discoveryinfostealer

Malware Config

Extracted

Family

redline

Botnet

1

C2

45.9.20.59:46287

Attributes
  • auth_value

    ec6ada170bcec2e72f0e1f3954547f73

Targets

    • Target

      738b1b953356a26fe1eb27b386bd9a1a2d13ce004176584c1d33ef11d1de7cab

    • Size

      370KB

    • MD5

      80d21448ab24f32d95636fc4bfcc9dd3

    • SHA1

      83eeff289f191b3cbd6c673a190520060797b874

    • SHA256

      738b1b953356a26fe1eb27b386bd9a1a2d13ce004176584c1d33ef11d1de7cab

    • SHA512

      bf326edd10c2dda51eec0f4611f9bd6a84f2db3a3855d4b17f2b48812c36ee05304033a68dc9957d726bf8b93e95119709f54779625611ebb3dd66f9e927c5fb

    • SSDEEP

      6144:5aq04PVZTOVCKCvwhMxR2HqOvobcjgw3DBMN9S0WLBfgb7ITsqXigaXwVfi:5aq04PvJDwex4HqTbckoti9wtfA7R

    Score
    10/10
    redline1discoveryinfostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine payload

    • Redline family

      redline
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks