Overview

overview

10

Static

static

3

1fcda7a60d...b9.exe

windows7-x64

10

1fcda7a60d...b9.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1fcda7a60d1f4765262d2662a69d4b8d731675b9

  • Size

    372KB

  • Sample

    241111-c3agvstqaq

  • MD5

    16caf0b5a5eaf70dee026111d93db5e4

  • SHA1

    1fcda7a60d1f4765262d2662a69d4b8d731675b9

  • SHA256

    4ae15652228874e5eb1c47be418b7516ecf955a6451ef60fd215e333eeaea504

  • SHA512

    c817b3bb916d70643b9e8fc6ea88a4fca3b9cf8c4d913e6f28b6e8b6c4166d2e8cf0d71e3daeeb331bb47d00b8419d7d18983423fa457ac92506c092fca96f15

  • SSDEEP

    3072:IEDcK6kemaIj8h8qXa5FZwC19bFYo5ijh93MoZPrE3gnbOyJwWof975Z342B:XcKraIy8qqLZ3LYsv0Ww56fxD

Score
10/10
redlinewwdiscoveryinfostealer

Malware Config

Extracted

Family

redline

Botnet

ww

C2

193.106.191.67:44400

Attributes
  • auth_value

    5a1b28ccd05953f5c3f99729c12427cc

Targets

    • Target

      1fcda7a60d1f4765262d2662a69d4b8d731675b9

    • Size

      372KB

    • MD5

      16caf0b5a5eaf70dee026111d93db5e4

    • SHA1

      1fcda7a60d1f4765262d2662a69d4b8d731675b9

    • SHA256

      4ae15652228874e5eb1c47be418b7516ecf955a6451ef60fd215e333eeaea504

    • SHA512

      c817b3bb916d70643b9e8fc6ea88a4fca3b9cf8c4d913e6f28b6e8b6c4166d2e8cf0d71e3daeeb331bb47d00b8419d7d18983423fa457ac92506c092fca96f15

    • SSDEEP

      3072:IEDcK6kemaIj8h8qXa5FZwC19bFYo5ijh93MoZPrE3gnbOyJwWof975Z342B:XcKraIy8qqLZ3LYsv0Ww56fxD

    Score
    10/10
    redlinewwdiscoveryinfostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine payload

    • Redline family

      redline
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks