Overview

overview

10

Static

static

3

72f77d9225...a9.exe

windows7-x64

10

72f77d9225...a9.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    72f77d922540748952c435e6ab5213607df12b07005cce9a5efbd5b2d361f4a9

  • Size

    297KB

  • Sample

    241109-k9w87svkhk

  • MD5

    b486481f66040b69522cbec42185bee3

  • SHA1

    bcf25bc9895a676e896b4008a714fc083c882ca4

  • SHA256

    72f77d922540748952c435e6ab5213607df12b07005cce9a5efbd5b2d361f4a9

  • SHA512

    60c6b76f2f930208e35a58a34d33593cba3f12c30ccba53d783f342a1d31f65d359a5f976827858edc0b05d5fe657c1e1f7a9f4eeeb713f3c4235478427f03ea

  • SSDEEP

    6144:bvzGiXPoPRvZzhR9WEjQJIud9k70st5J0c8f0wPIQJ:bLGiXPoPRxYEjQJIudS0SJ0c8f0wP

Score
10/10
redline1discoveryinfostealer

Malware Config

Extracted

Family

redline

Botnet

1

C2

45.9.20.59:46287

Attributes
  • auth_value

    ec6ada170bcec2e72f0e1f3954547f73

Targets

    • Target

      72f77d922540748952c435e6ab5213607df12b07005cce9a5efbd5b2d361f4a9

    • Size

      297KB

    • MD5

      b486481f66040b69522cbec42185bee3

    • SHA1

      bcf25bc9895a676e896b4008a714fc083c882ca4

    • SHA256

      72f77d922540748952c435e6ab5213607df12b07005cce9a5efbd5b2d361f4a9

    • SHA512

      60c6b76f2f930208e35a58a34d33593cba3f12c30ccba53d783f342a1d31f65d359a5f976827858edc0b05d5fe657c1e1f7a9f4eeeb713f3c4235478427f03ea

    • SSDEEP

      6144:bvzGiXPoPRvZzhR9WEjQJIud9k70st5J0c8f0wPIQJ:bLGiXPoPRxYEjQJIudS0SJ0c8f0wP

    Score
    10/10
    redline1discoveryinfostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine payload

    • Redline family

      redline
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks