Overview

overview

10

Static

static

3

ec8c98cc88...cc.exe

windows7-x64

10

ec8c98cc88...cc.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ec8c98cc884d3968c2fac1e8ca875bf69accab90c20b274a0ac03bb2c20201cc

  • Size

    383KB

  • Sample

    241109-jr3sla1blg

  • MD5

    f928c01f60945d36867315e4800a7e88

  • SHA1

    bd076e7b9506620e8182d4e5e6d19b72b3a31534

  • SHA256

    ec8c98cc884d3968c2fac1e8ca875bf69accab90c20b274a0ac03bb2c20201cc

  • SHA512

    4fd00459165feb41d1e660b845ec8f2d3b90baf57788a12c527dbcafbf53417add259277e5ccd8ab8b0f67529b4cdf4cba49bedf259cd2522737fc70840eb429

  • SSDEEP

    6144:ANaJ3TPjifAJdT1HhGB35wOx6irIvIG6PDdmXb7ITsqXigaXwVfZ:+eTbMAJdxsXx6Dv4dk7R

Score
10/10
redline1discoveryinfostealer

Malware Config

Extracted

Family

redline

Botnet

1

C2

45.9.20.59:46287

Attributes
  • auth_value

    ec6ada170bcec2e72f0e1f3954547f73

Targets

    • Target

      ec8c98cc884d3968c2fac1e8ca875bf69accab90c20b274a0ac03bb2c20201cc

    • Size

      383KB

    • MD5

      f928c01f60945d36867315e4800a7e88

    • SHA1

      bd076e7b9506620e8182d4e5e6d19b72b3a31534

    • SHA256

      ec8c98cc884d3968c2fac1e8ca875bf69accab90c20b274a0ac03bb2c20201cc

    • SHA512

      4fd00459165feb41d1e660b845ec8f2d3b90baf57788a12c527dbcafbf53417add259277e5ccd8ab8b0f67529b4cdf4cba49bedf259cd2522737fc70840eb429

    • SSDEEP

      6144:ANaJ3TPjifAJdT1HhGB35wOx6irIvIG6PDdmXb7ITsqXigaXwVfZ:+eTbMAJdxsXx6Dv4dk7R

    Score
    10/10
    redline1discoveryinfostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine payload

    • Redline family

      redline
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks