Overview

overview

10

Static

static

3

9ead5a7946...32.exe

windows7-x64

10

9ead5a7946...32.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9ead5a79469e245bafd216bc3738ccf66716f35b2d7bbf5b509af93c8ea4e032

  • Size

    302KB

  • Sample

    241109-qmw8ksxrcl

  • MD5

    0693a73cb5307d1cf10e43cdd608a3c9

  • SHA1

    cb87048192b76d8a805c9d6b076abdf0ec3cc1d6

  • SHA256

    9ead5a79469e245bafd216bc3738ccf66716f35b2d7bbf5b509af93c8ea4e032

  • SHA512

    5a656585c5a014a18de848511981f713cc6654046b73ebfc8fc0aad8936c3d6bd2312412d0db31d13723d4061e49f71b9b85af3ad2d391d27e3e56d01c8e15b2

  • SSDEEP

    3072:l8XLArFsh796WIYCt9ouTDXV1lIYNbMFjwBc5wbfRny9F4znqpN1tT+3QcxH2ocC:lpCTw9ouTDljIYpcwcgCm2Z7AiC6SQ

Score
10/10
redline11discoveryinfostealer

Malware Config

Extracted

Family

redline

Botnet

11

C2

45.9.20.157:46257

Attributes
  • auth_value

    344c26d7f808f9c29e47633026f19aa5

Targets

    • Target

      9ead5a79469e245bafd216bc3738ccf66716f35b2d7bbf5b509af93c8ea4e032

    • Size

      302KB

    • MD5

      0693a73cb5307d1cf10e43cdd608a3c9

    • SHA1

      cb87048192b76d8a805c9d6b076abdf0ec3cc1d6

    • SHA256

      9ead5a79469e245bafd216bc3738ccf66716f35b2d7bbf5b509af93c8ea4e032

    • SHA512

      5a656585c5a014a18de848511981f713cc6654046b73ebfc8fc0aad8936c3d6bd2312412d0db31d13723d4061e49f71b9b85af3ad2d391d27e3e56d01c8e15b2

    • SSDEEP

      3072:l8XLArFsh796WIYCt9ouTDXV1lIYNbMFjwBc5wbfRny9F4znqpN1tT+3QcxH2ocC:lpCTw9ouTDljIYpcwcgCm2Z7AiC6SQ

    Score
    10/10
    redline11discoveryinfostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine payload

    • Redline family

      redline
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks