Overview

overview

10

Static

static

3

a07ba82715...85.exe

windows7-x64

10

a07ba82715...85.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a07ba827154bc9e4c8d65d5449cf36a9b9368b85

  • Size

    373KB

  • Sample

    241111-b8ehbsyqaw

  • MD5

    70376c7f1fbfc617fb58cfb3c5d04d11

  • SHA1

    a07ba827154bc9e4c8d65d5449cf36a9b9368b85

  • SHA256

    0e0850451026d3cec0d1909bc236ec5372feca96f815d402c75e3fdf1efaa9cf

  • SHA512

    1f2f9ed66aca0ae76999e1161bfdc6cdf458b95078ddebba683a69fd9616b1aaa6fd50afe09448f459a0c08f5c0bf4853bae20992b4eecba85f781e50c9dd45e

  • SSDEEP

    6144:TEgI4x8ZI9z8xK36jWk2C5nsDhQvVrrLnniGPrv:TEg7CtxJ92C6Q93Lnie

Score
10/10
redlinewwdiscoveryinfostealer

Malware Config

Extracted

Family

redline

Botnet

ww

C2

193.106.191.67:44400

Attributes
  • auth_value

    5a1b28ccd05953f5c3f99729c12427cc

Targets

    • Target

      a07ba827154bc9e4c8d65d5449cf36a9b9368b85

    • Size

      373KB

    • MD5

      70376c7f1fbfc617fb58cfb3c5d04d11

    • SHA1

      a07ba827154bc9e4c8d65d5449cf36a9b9368b85

    • SHA256

      0e0850451026d3cec0d1909bc236ec5372feca96f815d402c75e3fdf1efaa9cf

    • SHA512

      1f2f9ed66aca0ae76999e1161bfdc6cdf458b95078ddebba683a69fd9616b1aaa6fd50afe09448f459a0c08f5c0bf4853bae20992b4eecba85f781e50c9dd45e

    • SSDEEP

      6144:TEgI4x8ZI9z8xK36jWk2C5nsDhQvVrrLnniGPrv:TEg7CtxJ92C6Q93Lnie

    Score
    10/10
    redlinewwdiscoveryinfostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine payload

    • Redline family

      redline
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks