Overview

overview

10

Static

static

3

ca676577c0...b9.exe

windows7-x64

10

ca676577c0...b9.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ca676577c06e082bbbf2b3fa4f879cc1d0bbf2c856086cf85931d2aba852e4b9

  • Size

    373KB

  • Sample

    241111-bk29gssmcn

  • MD5

    322e2298305da8fa548be857d7d7e24b

  • SHA1

    2b4afe16935249465f35bf43c9d7036f917f5c5f

  • SHA256

    ca676577c06e082bbbf2b3fa4f879cc1d0bbf2c856086cf85931d2aba852e4b9

  • SHA512

    e1d8ce8991234ffb94130fc9cfe729d4deea5d74dcedde5a4984224470828dd5504252c19e172a7fda7d3b5bce4a0c03cfcf9b5a11cef5726384fb18bca14412

  • SSDEEP

    3072:4ibEgkdGKxWR2VbM9eomnk9pi+D/OmlZI5Mf1gcE71zoVE0a7LgHjO5WsqnZg2:JEgucR2Z+eK9Q+D/XI5V1BKjB7nx

Score
10/10
redlinewwdiscoveryinfostealer

Malware Config

Extracted

Family

redline

Botnet

ww

C2

193.106.191.67:44400

Attributes
  • auth_value

    5a1b28ccd05953f5c3f99729c12427cc

Targets

    • Target

      ca676577c06e082bbbf2b3fa4f879cc1d0bbf2c856086cf85931d2aba852e4b9

    • Size

      373KB

    • MD5

      322e2298305da8fa548be857d7d7e24b

    • SHA1

      2b4afe16935249465f35bf43c9d7036f917f5c5f

    • SHA256

      ca676577c06e082bbbf2b3fa4f879cc1d0bbf2c856086cf85931d2aba852e4b9

    • SHA512

      e1d8ce8991234ffb94130fc9cfe729d4deea5d74dcedde5a4984224470828dd5504252c19e172a7fda7d3b5bce4a0c03cfcf9b5a11cef5726384fb18bca14412

    • SSDEEP

      3072:4ibEgkdGKxWR2VbM9eomnk9pi+D/OmlZI5Mf1gcE71zoVE0a7LgHjO5WsqnZg2:JEgucR2Z+eK9Q+D/XI5V1BKjB7nx

    Score
    10/10
    redlinewwdiscoveryinfostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine payload

    • Redline family

      redline
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks