Overview

overview

10

Static

static

3

42a50b948c...99.exe

windows7-x64

10

42a50b948c...99.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    42a50b948c8e3ab97c849022e267887456647c6141d4ae1a85f5177f5e7f8f99

  • Size

    297KB

  • Sample

    241111-j3tdaswgmg

  • MD5

    17b5a96d1abd45d2d5c0959dd5101b94

  • SHA1

    883beef2d8989da425b8293b8fba7c0eb35faf78

  • SHA256

    42a50b948c8e3ab97c849022e267887456647c6141d4ae1a85f5177f5e7f8f99

  • SHA512

    ea0bc70ba9624d666d4fe1bb0b03a6cde7279a171b5ad06feeb5c04007cf14069a3e6e2d34a3b792a6a271676a00c7762ca537d13153406343cb5a61b5baf12c

  • SSDEEP

    6144:UvHwCMbovF9JUKbHGTRfcfX1m3fbGKUBjcFPx76COzuS92:UPwCMbovF9JUKrGTRVCKajcfgzu

Score
10/10
redline1discoveryinfostealer

Malware Config

Extracted

Family

redline

Botnet

1

C2

45.9.20.59:46287

Attributes
  • auth_value

    ec6ada170bcec2e72f0e1f3954547f73

Targets

    • Target

      42a50b948c8e3ab97c849022e267887456647c6141d4ae1a85f5177f5e7f8f99

    • Size

      297KB

    • MD5

      17b5a96d1abd45d2d5c0959dd5101b94

    • SHA1

      883beef2d8989da425b8293b8fba7c0eb35faf78

    • SHA256

      42a50b948c8e3ab97c849022e267887456647c6141d4ae1a85f5177f5e7f8f99

    • SHA512

      ea0bc70ba9624d666d4fe1bb0b03a6cde7279a171b5ad06feeb5c04007cf14069a3e6e2d34a3b792a6a271676a00c7762ca537d13153406343cb5a61b5baf12c

    • SSDEEP

      6144:UvHwCMbovF9JUKbHGTRfcfX1m3fbGKUBjcFPx76COzuS92:UPwCMbovF9JUKrGTRVCKajcfgzu

    Score
    10/10
    redline1discoveryinfostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine payload

    • Redline family

      redline
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks