Overview

overview

10

Static

static

3

58e3c94a5c...07.exe

windows7-x64

10

58e3c94a5c...07.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    58e3c94a5c794f84a25f3e07c4d5523b2a49cc3efa61c137d51783b69fb18607

  • Size

    445KB

  • Sample

    241111-a3klqa1rgl

  • MD5

    0166f36cef0a0be1c366b77f8dd3db6d

  • SHA1

    80e314872f26b69f5224669dcbda20b5ba692f3d

  • SHA256

    58e3c94a5c794f84a25f3e07c4d5523b2a49cc3efa61c137d51783b69fb18607

  • SHA512

    5050d35fab49cd7df34770b9c6bd0e0a144304c7955d4148383c2410da40376f63fc3017faf713de2a3e8c04a9abd0bc15da8667c321d8f282691e38cac136de

  • SSDEEP

    6144:Kl0lqPY5O5kTt6196AvXlyQFSWXLGIz78B/0h5chg+rQWKO:FlFO5A6eAflyQdXLGIzoB/s5chgf

Score
10/10
redlinewwdiscoveryinfostealer

Malware Config

Extracted

Family

redline

Botnet

ww

C2

45.9.20.168:46257

Attributes
  • auth_value

    5a1b28ccd05953f5c3f99729c12427cc

Targets

    • Target

      58e3c94a5c794f84a25f3e07c4d5523b2a49cc3efa61c137d51783b69fb18607

    • Size

      445KB

    • MD5

      0166f36cef0a0be1c366b77f8dd3db6d

    • SHA1

      80e314872f26b69f5224669dcbda20b5ba692f3d

    • SHA256

      58e3c94a5c794f84a25f3e07c4d5523b2a49cc3efa61c137d51783b69fb18607

    • SHA512

      5050d35fab49cd7df34770b9c6bd0e0a144304c7955d4148383c2410da40376f63fc3017faf713de2a3e8c04a9abd0bc15da8667c321d8f282691e38cac136de

    • SSDEEP

      6144:Kl0lqPY5O5kTt6196AvXlyQFSWXLGIz78B/0h5chg+rQWKO:FlFO5A6eAflyQdXLGIzoB/s5chgf

    Score
    10/10
    redlinewwdiscoveryinfostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine payload

    • Redline family

      redline
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks