Overview

overview

10

Static

static

3

cbe164e023...d2.exe

windows7-x64

10

cbe164e023...d2.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    cbe164e0235dbe9f3c7776ceb1d72c9da0580dd46d62a73029da05d00cfa3ad2.exe

  • Size

    399KB

  • Sample

    241115-vpylmsyaje

  • MD5

    45797ec5a7225d45b0c9007235239f6e

  • SHA1

    4df68fa734dc305f4fb33efe6f1581fc20096d99

  • SHA256

    cbe164e0235dbe9f3c7776ceb1d72c9da0580dd46d62a73029da05d00cfa3ad2

  • SHA512

    1069c703e911a43d784db63253c44e2ccd4fd65829be1c297214504b8695177f6271037989bb302ce10e7c0af944ea65f317d7a36a6f0086ef63a270d5d5f647

  • SSDEEP

    6144:2ArLmWQ7AkMULfY2Q6D31yJSASHdA5S1c:2GyWQ7LdLfok8SASHKQa

Score
10/10
redlinemangodiscoveryinfostealer

Malware Config

Extracted

Family

redline

Botnet

mango

C2

193.233.20.28:4125

Attributes
  • auth_value

    ecf79d7f5227d998a3501c972d915d23

Targets

    • Target

      cbe164e0235dbe9f3c7776ceb1d72c9da0580dd46d62a73029da05d00cfa3ad2.exe

    • Size

      399KB

    • MD5

      45797ec5a7225d45b0c9007235239f6e

    • SHA1

      4df68fa734dc305f4fb33efe6f1581fc20096d99

    • SHA256

      cbe164e0235dbe9f3c7776ceb1d72c9da0580dd46d62a73029da05d00cfa3ad2

    • SHA512

      1069c703e911a43d784db63253c44e2ccd4fd65829be1c297214504b8695177f6271037989bb302ce10e7c0af944ea65f317d7a36a6f0086ef63a270d5d5f647

    • SSDEEP

      6144:2ArLmWQ7AkMULfY2Q6D31yJSASHdA5S1c:2GyWQ7LdLfok8SASHKQa

    Score
    10/10
    redlinemangodiscoveryinfostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine payload

    • Redline family

      redline
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks