Overview

overview

10

Static

static

3

905fbc95e1...f7.exe

windows7-x64

10

905fbc95e1...f7.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    905fbc95e168316d741bfaf005f2cb9db5ba3fffdd9fa3886ce6a4bb3fdf27f7

  • Size

    302KB

  • Sample

    241109-wdkfbayjby

  • MD5

    3d15b8b7144d63667da3835592de8a6f

  • SHA1

    0c17454a156e5cfcba756bd2bbfe91958b1d215a

  • SHA256

    905fbc95e168316d741bfaf005f2cb9db5ba3fffdd9fa3886ce6a4bb3fdf27f7

  • SHA512

    8fca699f35e7b9742eecc4088b8d6493e74da6d21ab554f640a7c8a4a18909cb0cc35746ecb1b2baa6797e3910724ada547f17e2551ebf73d4ee12104f9de597

  • SSDEEP

    3072:l8XLArFsh796WIYCt9ouTDXV1lIYNbMFjwBc5wbfRny9F4znqpN1tT+3QcxH2ocC:lpCTw9ouTDljIYpcwcgCm2Z7AiC6SQ

Score
10/10
redline11discoveryinfostealer

Malware Config

Extracted

Family

redline

Botnet

11

C2

45.9.20.157:46257

Attributes
  • auth_value

    344c26d7f808f9c29e47633026f19aa5

Targets

    • Target

      905fbc95e168316d741bfaf005f2cb9db5ba3fffdd9fa3886ce6a4bb3fdf27f7

    • Size

      302KB

    • MD5

      3d15b8b7144d63667da3835592de8a6f

    • SHA1

      0c17454a156e5cfcba756bd2bbfe91958b1d215a

    • SHA256

      905fbc95e168316d741bfaf005f2cb9db5ba3fffdd9fa3886ce6a4bb3fdf27f7

    • SHA512

      8fca699f35e7b9742eecc4088b8d6493e74da6d21ab554f640a7c8a4a18909cb0cc35746ecb1b2baa6797e3910724ada547f17e2551ebf73d4ee12104f9de597

    • SSDEEP

      3072:l8XLArFsh796WIYCt9ouTDXV1lIYNbMFjwBc5wbfRny9F4znqpN1tT+3QcxH2ocC:lpCTw9ouTDljIYpcwcgCm2Z7AiC6SQ

    Score
    10/10
    redline11discoveryinfostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine payload

    • Redline family

      redline
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks