Overview

overview

10

Static

static

3

4543c88a5b...9d.exe

windows7-x64

10

4543c88a5b...9d.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    4543c88a5bf7643c5c4fd335a9c6f83e3757d6d8b8f3f4910dbd7e44e6f5c99d

  • Size

    423KB

  • Sample

    241111-ddntmazqex

  • MD5

    8f3d13ccda3696e440b9c2eb084d8800

  • SHA1

    88419fc04bffa4879f9fa8d880599c779ae5d137

  • SHA256

    4543c88a5bf7643c5c4fd335a9c6f83e3757d6d8b8f3f4910dbd7e44e6f5c99d

  • SHA512

    29da863d245c5ac34631ddfcc1bc1517c09007fc0e8f335851cb511fe2126d02d26306cef821d4ea7eeed0632f11da1d8f0b106846fc5bc17b27db71367e2570

  • SSDEEP

    6144:XQ5ARa6ocV7kZpW6LX3Y0BxY3e2zGM/4MYmrgkN+k0DLltf3qefeh:XQORZhkZ8w3FBx2aVMYmrgkN+kgtf3

Score
10/10
redline1discoveryinfostealer

Malware Config

Extracted

Family

redline

Botnet

1

C2

45.9.20.59:46287

Attributes
  • auth_value

    ec6ada170bcec2e72f0e1f3954547f73

Targets

    • Target

      4543c88a5bf7643c5c4fd335a9c6f83e3757d6d8b8f3f4910dbd7e44e6f5c99d

    • Size

      423KB

    • MD5

      8f3d13ccda3696e440b9c2eb084d8800

    • SHA1

      88419fc04bffa4879f9fa8d880599c779ae5d137

    • SHA256

      4543c88a5bf7643c5c4fd335a9c6f83e3757d6d8b8f3f4910dbd7e44e6f5c99d

    • SHA512

      29da863d245c5ac34631ddfcc1bc1517c09007fc0e8f335851cb511fe2126d02d26306cef821d4ea7eeed0632f11da1d8f0b106846fc5bc17b27db71367e2570

    • SSDEEP

      6144:XQ5ARa6ocV7kZpW6LX3Y0BxY3e2zGM/4MYmrgkN+k0DLltf3qefeh:XQORZhkZ8w3FBx2aVMYmrgkN+kgtf3

    Score
    10/10
    redline1discoveryinfostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine payload

    • Redline family

      redline
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks