Overview

overview

10

Static

static

3

4cb978b52d...33.exe

windows7-x64

10

4cb978b52d...33.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    4cb978b52d714df1a43945fd1da69ec2024cc9d7afc95052ac0dcd067d9cb233

  • Size

    410KB

  • Sample

    241109-gafkmayfjl

  • MD5

    bb53e1a36e4bb2dbb3008f7e575144e5

  • SHA1

    dee7f1853dba23d8cfdfbfa4851f1bd2c0e8006a

  • SHA256

    4cb978b52d714df1a43945fd1da69ec2024cc9d7afc95052ac0dcd067d9cb233

  • SHA512

    89fd579e6f297be2f95867c80fb57cbfdafad6573cca724e78664b2dadd3fece3c2c622b1f5f52130a5c5e1a729da3f259b5772c4db59c0c708a1ee40c4fbbab

  • SSDEEP

    6144:kMRBC/R6TE/iRAtvdnm4iYVC0dbflCZjmUdhTjMmhIkzHf0KRGGDkTB5wCuPG1:AW6tc4iGCyfIZjmFmikzHf0D0kTFiG

Score
10/10
redline11discoveryinfostealer

Malware Config

Extracted

Family

redline

Botnet

11

C2

45.9.20.157:46257

Attributes
  • auth_value

    344c26d7f808f9c29e47633026f19aa5

Targets

    • Target

      4cb978b52d714df1a43945fd1da69ec2024cc9d7afc95052ac0dcd067d9cb233

    • Size

      410KB

    • MD5

      bb53e1a36e4bb2dbb3008f7e575144e5

    • SHA1

      dee7f1853dba23d8cfdfbfa4851f1bd2c0e8006a

    • SHA256

      4cb978b52d714df1a43945fd1da69ec2024cc9d7afc95052ac0dcd067d9cb233

    • SHA512

      89fd579e6f297be2f95867c80fb57cbfdafad6573cca724e78664b2dadd3fece3c2c622b1f5f52130a5c5e1a729da3f259b5772c4db59c0c708a1ee40c4fbbab

    • SSDEEP

      6144:kMRBC/R6TE/iRAtvdnm4iYVC0dbflCZjmUdhTjMmhIkzHf0KRGGDkTB5wCuPG1:AW6tc4iGCyfIZjmFmikzHf0D0kTFiG

    Score
    10/10
    redline11discoveryinfostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine payload

    • Redline family

      redline
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks