Overview

overview

10

Static

static

3

5a73856215...8c.exe

windows7-x64

10

5a73856215...8c.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5a73856215e5e9a07f5bab92c4f5d8897767f0f76b121a21d71543154154298c

  • Size

    396KB

  • Sample

    241112-2dl7sswkdj

  • MD5

    d5df8a4d2309e934e9dcafaf6488de50

  • SHA1

    5d64fcac7f6ca8fc1c298a83a1f0c8539b0adf34

  • SHA256

    5a73856215e5e9a07f5bab92c4f5d8897767f0f76b121a21d71543154154298c

  • SHA512

    29ec65010ab5e5341c780e00762ca1225d7fc21dbe1263442b5f36a59bd0397ed2db4a9f6e1e580b22f0eb54e016f3dac9a3f66afba6a7729964ceae19a5eabd

  • SSDEEP

    6144:u5ALo/V8fOsSH4Pu88U0WZL3jeXrhUFQiMQkhe8UQ:u5Ak/VUSH4Pd8UpL3jSCFdM3h

Score
10/10
redlinemangodiscoveryinfostealer

Malware Config

Extracted

Family

redline

Botnet

mango

C2

193.233.20.28:4125

Attributes
  • auth_value

    ecf79d7f5227d998a3501c972d915d23

Targets

    • Target

      5a73856215e5e9a07f5bab92c4f5d8897767f0f76b121a21d71543154154298c

    • Size

      396KB

    • MD5

      d5df8a4d2309e934e9dcafaf6488de50

    • SHA1

      5d64fcac7f6ca8fc1c298a83a1f0c8539b0adf34

    • SHA256

      5a73856215e5e9a07f5bab92c4f5d8897767f0f76b121a21d71543154154298c

    • SHA512

      29ec65010ab5e5341c780e00762ca1225d7fc21dbe1263442b5f36a59bd0397ed2db4a9f6e1e580b22f0eb54e016f3dac9a3f66afba6a7729964ceae19a5eabd

    • SSDEEP

      6144:u5ALo/V8fOsSH4Pu88U0WZL3jeXrhUFQiMQkhe8UQ:u5Ak/VUSH4Pd8UpL3jSCFdM3h

    Score
    10/10
    redlinemangodiscoveryinfostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine payload

    • Redline family

      redline
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks