Overview

overview

10

Static

static

3

9bb0eab56d...4f.exe

windows7-x64

10

9bb0eab56d...4f.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9bb0eab56d441059cd3c072ffd253a757d7e3418f75353f8d6ae05797b178f4f

  • Size

    283KB

  • Sample

    241113-batjlatfpg

  • MD5

    14de0643993fc8794962c9db5d5df09b

  • SHA1

    38bab9d20534364fd940b36a7a681ce6f4751716

  • SHA256

    9bb0eab56d441059cd3c072ffd253a757d7e3418f75353f8d6ae05797b178f4f

  • SHA512

    b8192c1379eecd9ff85da616e4d699e5f5e29d33637c7b139c58b5c6fdda2c619b92525a33dbfae19ff672549df2dc2c4581b249eda6a67dfda898fdf82a06a8

  • SSDEEP

    6144:u4MXuMjgb9SN4sm8GFbdlQQtecmqZmRvhKJ:u4MXSVMgls0W

Score
10/10
redlinemangodiscoveryinfostealer

Malware Config

Extracted

Family

redline

Botnet

mango

C2

193.233.20.28:4125

Attributes
  • auth_value

    ecf79d7f5227d998a3501c972d915d23

Targets

    • Target

      9bb0eab56d441059cd3c072ffd253a757d7e3418f75353f8d6ae05797b178f4f

    • Size

      283KB

    • MD5

      14de0643993fc8794962c9db5d5df09b

    • SHA1

      38bab9d20534364fd940b36a7a681ce6f4751716

    • SHA256

      9bb0eab56d441059cd3c072ffd253a757d7e3418f75353f8d6ae05797b178f4f

    • SHA512

      b8192c1379eecd9ff85da616e4d699e5f5e29d33637c7b139c58b5c6fdda2c619b92525a33dbfae19ff672549df2dc2c4581b249eda6a67dfda898fdf82a06a8

    • SSDEEP

      6144:u4MXuMjgb9SN4sm8GFbdlQQtecmqZmRvhKJ:u4MXSVMgls0W

    Score
    10/10
    redlinemangodiscoveryinfostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine payload

    • Redline family

      redline
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks