Overview

overview

10

Static

static

3

2a4cc377cc...5b.exe

windows7-x64

10

2a4cc377cc...5b.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2a4cc377cc36ff63f721c3a48dfa8c84d7fea33e96f49299a7c181cd022af85b

  • Size

    413KB

  • Sample

    241110-1w3rtsyrfk

  • MD5

    c49bc2a25e70feb4083b25a28b950fcd

  • SHA1

    87be5377a1ddf891a00a446dd85b0808b781601d

  • SHA256

    2a4cc377cc36ff63f721c3a48dfa8c84d7fea33e96f49299a7c181cd022af85b

  • SHA512

    d18bb652f248b8d008828d1eda22a412e1195ad4b73f2e0081dda5346ceb106e996a95033a4f98f19fafe8acefd9d0d6ad91fae7986cf5a3407b0b65eb5890ab

  • SSDEEP

    6144:94246L9BcFjIXqnTsxHUgxVfZgzq30vaks9TTMvg/9LyFIz:I6RBcqKI3ngzYzh/9LPz

Score
10/10
redlinedozkdiscoveryinfostealer

Malware Config

Extracted

Family

redline

Botnet

dozk

C2

91.215.85.15:25916

Attributes
  • auth_value

    9f1dc4ff242fb8b53742acae0ef96143

Targets

    • Target

      2a4cc377cc36ff63f721c3a48dfa8c84d7fea33e96f49299a7c181cd022af85b

    • Size

      413KB

    • MD5

      c49bc2a25e70feb4083b25a28b950fcd

    • SHA1

      87be5377a1ddf891a00a446dd85b0808b781601d

    • SHA256

      2a4cc377cc36ff63f721c3a48dfa8c84d7fea33e96f49299a7c181cd022af85b

    • SHA512

      d18bb652f248b8d008828d1eda22a412e1195ad4b73f2e0081dda5346ceb106e996a95033a4f98f19fafe8acefd9d0d6ad91fae7986cf5a3407b0b65eb5890ab

    • SSDEEP

      6144:94246L9BcFjIXqnTsxHUgxVfZgzq30vaks9TTMvg/9LyFIz:I6RBcqKI3ngzYzh/9LPz

    Score
    10/10
    redlinedozkdiscoveryinfostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine payload

    • Redline family

      redline
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks