Overview

overview

10

Static

static

3

f8e880aa77...9b.exe

windows7-x64

10

f8e880aa77...9b.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f8e880aa77d5658cbd3ecdb8c2786a42f6d72c48db9c052b92de1e6af69c449b

  • Size

    410KB

  • Sample

    241111-f3481sthje

  • MD5

    f4e1bb24f21e64b2aff10a8c8a7bf1b4

  • SHA1

    751fbe6d4cee9479898f919b34c15b6b42e3fd2e

  • SHA256

    f8e880aa77d5658cbd3ecdb8c2786a42f6d72c48db9c052b92de1e6af69c449b

  • SHA512

    25472aae11a6b6d3e76f569555534b19f282c4cbab7d5343cd07a33d64047f0df83776b833c471328f4876f788b58c4315c0b0f69bd7fa36d4f9302b054dfb22

  • SSDEEP

    6144:kMRBC/R6TE/iRAtvdnm4iYVC0dbflCZjmUdhTjMmhIkzHf0KRGGDkTB5wCuPG1:AW6tc4iGCyfIZjmFmikzHf0D0kTFiG

Score
10/10
redline11discoveryinfostealer

Malware Config

Extracted

Family

redline

Botnet

11

C2

45.9.20.157:46257

Attributes
  • auth_value

    344c26d7f808f9c29e47633026f19aa5

Targets

    • Target

      f8e880aa77d5658cbd3ecdb8c2786a42f6d72c48db9c052b92de1e6af69c449b

    • Size

      410KB

    • MD5

      f4e1bb24f21e64b2aff10a8c8a7bf1b4

    • SHA1

      751fbe6d4cee9479898f919b34c15b6b42e3fd2e

    • SHA256

      f8e880aa77d5658cbd3ecdb8c2786a42f6d72c48db9c052b92de1e6af69c449b

    • SHA512

      25472aae11a6b6d3e76f569555534b19f282c4cbab7d5343cd07a33d64047f0df83776b833c471328f4876f788b58c4315c0b0f69bd7fa36d4f9302b054dfb22

    • SSDEEP

      6144:kMRBC/R6TE/iRAtvdnm4iYVC0dbflCZjmUdhTjMmhIkzHf0KRGGDkTB5wCuPG1:AW6tc4iGCyfIZjmFmikzHf0D0kTFiG

    Score
    10/10
    redline11discoveryinfostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine payload

    • Redline family

      redline
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks