Overview

overview

10

Static

static

3

633d29ae41...c9.exe

windows7-x64

10

633d29ae41...c9.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    633d29ae417e54e70038513944b1bc3e0e64f15e44ef418c5e8ec744f9aa89c9.exe

  • Size

    283KB

  • Sample

    241113-kjddeayenp

  • MD5

    763f274162a628c1489f9b42b56ee2b5

  • SHA1

    6081c16de228f11b4c9e1ab60add14aa33b3dc6d

  • SHA256

    633d29ae417e54e70038513944b1bc3e0e64f15e44ef418c5e8ec744f9aa89c9

  • SHA512

    c7cfa3b9315096df9e5abef6bbf9d1b2ea6bcdaf05925c3b0f29d6cc33750df83c4fe411832acbaa81c757331eb3780d34556d8ee723e896e7353cb21764a115

  • SSDEEP

    6144:C4MXuMjgb9SN4sm8GFbdlQQtecmqZmRvhKJL:C4MXSVMgls0WO

Score
10/10
redlinemangodiscoveryinfostealer

Malware Config

Extracted

Family

redline

Botnet

mango

C2

193.233.20.28:4125

Attributes
  • auth_value

    ecf79d7f5227d998a3501c972d915d23

Targets

    • Target

      633d29ae417e54e70038513944b1bc3e0e64f15e44ef418c5e8ec744f9aa89c9.exe

    • Size

      283KB

    • MD5

      763f274162a628c1489f9b42b56ee2b5

    • SHA1

      6081c16de228f11b4c9e1ab60add14aa33b3dc6d

    • SHA256

      633d29ae417e54e70038513944b1bc3e0e64f15e44ef418c5e8ec744f9aa89c9

    • SHA512

      c7cfa3b9315096df9e5abef6bbf9d1b2ea6bcdaf05925c3b0f29d6cc33750df83c4fe411832acbaa81c757331eb3780d34556d8ee723e896e7353cb21764a115

    • SSDEEP

      6144:C4MXuMjgb9SN4sm8GFbdlQQtecmqZmRvhKJL:C4MXSVMgls0WO

    Score
    10/10
    redlinemangodiscoveryinfostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine payload

    • Redline family

      redline
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks