Overview

overview

10

Static

static

3

47d4509a3c...ca.exe

windows7-x64

10

47d4509a3c...ca.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    47d4509a3cebc223018ce8354e96c2f1c0afdff74ddfd2461f4e33bd4ac9a3ca

  • Size

    410KB

  • Sample

    241111-ckfadszjcz

  • MD5

    ad7ebb2ab421eeb89dd1026f32adde2f

  • SHA1

    76acf968258caf75fb3e4ac5cbc1b4ca48874a4b

  • SHA256

    47d4509a3cebc223018ce8354e96c2f1c0afdff74ddfd2461f4e33bd4ac9a3ca

  • SHA512

    6c58144a3c3a13b8b7fbd63cfab9fea29c9e19535c435ef4731670aca6fcb012e2f8278ceab6c69ddbc826e3b6c38e21bc26636a7b1f6a517cc5caa26340b549

  • SSDEEP

    6144:xe7JNLtZXhjwNjndQBvVDFcK5ykXWxpyk11EcQx06SnBz:oJNLFwhd4VDFrykXWxpyKEcQx07B

Score
10/10
redline170discoveryinfostealer

Malware Config

Extracted

Family

redline

Botnet

170

C2

45.9.20.240:46257

Attributes
  • auth_value

    73f905977a8199ea3d396a0a7d0ae6c8

Targets

    • Target

      47d4509a3cebc223018ce8354e96c2f1c0afdff74ddfd2461f4e33bd4ac9a3ca

    • Size

      410KB

    • MD5

      ad7ebb2ab421eeb89dd1026f32adde2f

    • SHA1

      76acf968258caf75fb3e4ac5cbc1b4ca48874a4b

    • SHA256

      47d4509a3cebc223018ce8354e96c2f1c0afdff74ddfd2461f4e33bd4ac9a3ca

    • SHA512

      6c58144a3c3a13b8b7fbd63cfab9fea29c9e19535c435ef4731670aca6fcb012e2f8278ceab6c69ddbc826e3b6c38e21bc26636a7b1f6a517cc5caa26340b549

    • SSDEEP

      6144:xe7JNLtZXhjwNjndQBvVDFcK5ykXWxpyk11EcQx06SnBz:oJNLFwhd4VDFrykXWxpyKEcQx07B

    Score
    10/10
    redline170discoveryinfostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine payload

    • Redline family

      redline
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks