Overview

overview

10

Static

static

3

a2f241561f...2f.exe

windows7-x64

10

a2f241561f...2f.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a2f241561f4bb6fd37cf10f8a439f53f10d174426797e7f40511e5f7096f5a2f

  • Size

    423KB

  • Sample

    241109-bflqyawpcj

  • MD5

    1112473d1dcc244979a602aec3cd083b

  • SHA1

    412919718c9e2625943849478eb0df74fcf13891

  • SHA256

    a2f241561f4bb6fd37cf10f8a439f53f10d174426797e7f40511e5f7096f5a2f

  • SHA512

    6643636a34b7892f4b56bcaa4b3c217e3d7967511237225b0674c21d0b8e3f275d28c7e8b47aecd084a5a300290096ce95bcdc6afba33c69f3eaa162e83cd334

  • SSDEEP

    12288:u4rXu0OVUf2Au746adZtIzkNDtZuFM9bT6f+N:1lOG2tJ89tMUI+

Score
10/10
redline1discoveryinfostealer

Malware Config

Extracted

Family

redline

Botnet

1

C2

45.9.20.59:46287

Attributes
  • auth_value

    ec6ada170bcec2e72f0e1f3954547f73

Targets

    • Target

      a2f241561f4bb6fd37cf10f8a439f53f10d174426797e7f40511e5f7096f5a2f

    • Size

      423KB

    • MD5

      1112473d1dcc244979a602aec3cd083b

    • SHA1

      412919718c9e2625943849478eb0df74fcf13891

    • SHA256

      a2f241561f4bb6fd37cf10f8a439f53f10d174426797e7f40511e5f7096f5a2f

    • SHA512

      6643636a34b7892f4b56bcaa4b3c217e3d7967511237225b0674c21d0b8e3f275d28c7e8b47aecd084a5a300290096ce95bcdc6afba33c69f3eaa162e83cd334

    • SSDEEP

      12288:u4rXu0OVUf2Au746adZtIzkNDtZuFM9bT6f+N:1lOG2tJ89tMUI+

    Score
    10/10
    redline1discoveryinfostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine payload

    • Redline family

      redline
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks