Overview

overview

10

Static

static

3

9398107845...26.exe

windows7-x64

10

9398107845...26.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9398107845b862420bd3f421f9cf73a118a9bd4c1db4737e33fc247954259826.exe

  • Size

    446KB

  • Sample

    241119-f6dkga1apa

  • MD5

    fbf795ab04373baf47dfff891c47efb9

  • SHA1

    e94383f47e1ff632de8b9fa37b0f3ce9d6d16b42

  • SHA256

    9398107845b862420bd3f421f9cf73a118a9bd4c1db4737e33fc247954259826

  • SHA512

    400e5195a4406b8c911b1173d987646fd2e6840aef2a82ab36d1a903c2262cbe7c6108398a2ab942d664fbc5222058dd95b4910945098ef3ff6fe49625b8d690

  • SSDEEP

    12288:vpsmWy6TDMK0N4QQdqIXDZHFCc/daX0Il6:vyzy+Bq4QDatql6

Score
10/10
redlinemangodiscoveryinfostealer

Malware Config

Extracted

Family

redline

Botnet

mango

C2

193.233.20.28:4125

Attributes
  • auth_value

    ecf79d7f5227d998a3501c972d915d23

Targets

    • Target

      9398107845b862420bd3f421f9cf73a118a9bd4c1db4737e33fc247954259826.exe

    • Size

      446KB

    • MD5

      fbf795ab04373baf47dfff891c47efb9

    • SHA1

      e94383f47e1ff632de8b9fa37b0f3ce9d6d16b42

    • SHA256

      9398107845b862420bd3f421f9cf73a118a9bd4c1db4737e33fc247954259826

    • SHA512

      400e5195a4406b8c911b1173d987646fd2e6840aef2a82ab36d1a903c2262cbe7c6108398a2ab942d664fbc5222058dd95b4910945098ef3ff6fe49625b8d690

    • SSDEEP

      12288:vpsmWy6TDMK0N4QQdqIXDZHFCc/daX0Il6:vyzy+Bq4QDatql6

    Score
    10/10
    redlinemangodiscoveryinfostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine payload

    • Redline family

      redline
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks