Overview

overview

10

Static

static

3

80b030d4b7...fe.exe

windows7-x64

10

80b030d4b7...fe.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    80b030d4b726cd38ec493b30aa902ab29bb98831f8117b0b95aaa62c1b7ef8fe

  • Size

    410KB

  • Sample

    241109-dq2k9aypcn

  • MD5

    d55a25c64871fdf091960b424f6ac9e3

  • SHA1

    abbf1c0a705be6fa960be179588051cb696995d3

  • SHA256

    80b030d4b726cd38ec493b30aa902ab29bb98831f8117b0b95aaa62c1b7ef8fe

  • SHA512

    7bff011c2355ccf9fe02ae01155d0be323cbbb17d5327f09d930e21b09e4dc9cfd2c8ccdb4359a784f66daa3545a6b239c476f91f05f7b1f7d94891253612b7d

  • SSDEEP

    6144:kMRBC/R6TE/iRAtvdnm4iYVC0dbflCZjmUdhTjMmhIkzHf0KRGGDkTB5wCuPG1:AW6tc4iGCyfIZjmFmikzHf0D0kTFiG

Score
10/10
redline11discoveryinfostealer

Malware Config

Extracted

Family

redline

Botnet

11

C2

45.9.20.157:46257

Attributes
  • auth_value

    344c26d7f808f9c29e47633026f19aa5

Targets

    • Target

      80b030d4b726cd38ec493b30aa902ab29bb98831f8117b0b95aaa62c1b7ef8fe

    • Size

      410KB

    • MD5

      d55a25c64871fdf091960b424f6ac9e3

    • SHA1

      abbf1c0a705be6fa960be179588051cb696995d3

    • SHA256

      80b030d4b726cd38ec493b30aa902ab29bb98831f8117b0b95aaa62c1b7ef8fe

    • SHA512

      7bff011c2355ccf9fe02ae01155d0be323cbbb17d5327f09d930e21b09e4dc9cfd2c8ccdb4359a784f66daa3545a6b239c476f91f05f7b1f7d94891253612b7d

    • SSDEEP

      6144:kMRBC/R6TE/iRAtvdnm4iYVC0dbflCZjmUdhTjMmhIkzHf0KRGGDkTB5wCuPG1:AW6tc4iGCyfIZjmFmikzHf0D0kTFiG

    Score
    10/10
    redline11discoveryinfostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine payload

    • Redline family

      redline
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks