Overview

overview

10

Static

static

3

6c14db3e49...9c.exe

windows7-x64

10

6c14db3e49...9c.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    6c14db3e49a3d62f696df8cbf71922d49db05f63e2076111693041345535509c.exe

  • Size

    284KB

  • Sample

    241115-vwfpeaxmbs

  • MD5

    3dff69ff8258a5992f43ac5dd837bd0b

  • SHA1

    4d10402c25d783463437e015ab5b841e9d5e46ea

  • SHA256

    6c14db3e49a3d62f696df8cbf71922d49db05f63e2076111693041345535509c

  • SHA512

    c2dddd207c87628a30a29107c5d4bb7aab6eafc7fcfa7e5b157c32d268c984430a2d58ed7a1712350621d6cc429d3cce7962361d4638a5a890473cb5772fd0a6

  • SSDEEP

    6144:v6H8Rz6dbZC6QOaGqGwVPPfA4zu0b7fPQy:v6H8FnpMhwVPS0Pfn

Score
10/10
redlinemangodiscoveryinfostealer

Malware Config

Extracted

Family

redline

Botnet

mango

C2

193.233.20.28:4125

Attributes
  • auth_value

    ecf79d7f5227d998a3501c972d915d23

Targets

    • Target

      6c14db3e49a3d62f696df8cbf71922d49db05f63e2076111693041345535509c.exe

    • Size

      284KB

    • MD5

      3dff69ff8258a5992f43ac5dd837bd0b

    • SHA1

      4d10402c25d783463437e015ab5b841e9d5e46ea

    • SHA256

      6c14db3e49a3d62f696df8cbf71922d49db05f63e2076111693041345535509c

    • SHA512

      c2dddd207c87628a30a29107c5d4bb7aab6eafc7fcfa7e5b157c32d268c984430a2d58ed7a1712350621d6cc429d3cce7962361d4638a5a890473cb5772fd0a6

    • SSDEEP

      6144:v6H8Rz6dbZC6QOaGqGwVPPfA4zu0b7fPQy:v6H8FnpMhwVPS0Pfn

    Score
    10/10
    redlinemangodiscoveryinfostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine payload

    • Redline family

      redline
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks