Overview

overview

10

Static

static

3

b6f36e675f...f3.exe

windows7-x64

10

b6f36e675f...f3.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b6f36e675f5799faf05aba8b6855a9123ce6b565bf0ba0759c63b1f7afc583f3

  • Size

    322KB

  • Sample

    241111-alhe2aydma

  • MD5

    6c715a48009edd615cb658c39ea9bf63

  • SHA1

    93038bff0778e58bd8c6a9c1fa8344357828ad74

  • SHA256

    b6f36e675f5799faf05aba8b6855a9123ce6b565bf0ba0759c63b1f7afc583f3

  • SHA512

    813c05289022296fca022491653bec3e86b6dc9f98c976707f41b602a5d933626d78611c279fcb8803f657cf8f951c086b4581f1a43d427ed38477744d164864

  • SSDEEP

    6144:eUgLpjp90jrpL6sz42bqrJiZXU+lpEoZ2v3pCLT0mY0:eUg91qjrlJzCUZXU+7E3v5CLTJP

Score
10/10
redline123discoveryinfostealer

Malware Config

Extracted

Family

redline

Botnet

123

C2

78.153.144.3:2510

Attributes
  • auth_value

    cd6abb0af211bce081d7bf127cc26835

Targets

    • Target

      b6f36e675f5799faf05aba8b6855a9123ce6b565bf0ba0759c63b1f7afc583f3

    • Size

      322KB

    • MD5

      6c715a48009edd615cb658c39ea9bf63

    • SHA1

      93038bff0778e58bd8c6a9c1fa8344357828ad74

    • SHA256

      b6f36e675f5799faf05aba8b6855a9123ce6b565bf0ba0759c63b1f7afc583f3

    • SHA512

      813c05289022296fca022491653bec3e86b6dc9f98c976707f41b602a5d933626d78611c279fcb8803f657cf8f951c086b4581f1a43d427ed38477744d164864

    • SSDEEP

      6144:eUgLpjp90jrpL6sz42bqrJiZXU+lpEoZ2v3pCLT0mY0:eUg91qjrlJzCUZXU+7E3v5CLTJP

    Score
    10/10
    redline123discoveryinfostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine payload

    • Redline family

      redline
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks