Overview

overview

10

Static

static

3

9cf41bd288...1N.exe

windows7-x64

10

9cf41bd288...1N.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9cf41bd288bce14a53d1292e89bf1eba92f0fb72d7e76c5df3b9479aaf0dc851N.exe

  • Size

    446KB

  • Sample

    241119-glwe8awlhr

  • MD5

    a7bd0155d7c4bdc9ff01337288d4e5c0

  • SHA1

    d679bdc66d0418e02885a18fd21056708f09be8d

  • SHA256

    9cf41bd288bce14a53d1292e89bf1eba92f0fb72d7e76c5df3b9479aaf0dc851

  • SHA512

    acee7d367259b51fbe9c06e5fe63049a5c4f171b604997ba41fa447b8d7f0a2f071b7d452f3823e2d82c4808ba4cbcd870b2e2775b545e8760ecd20cec8b7bc9

  • SSDEEP

    12288:vpsmWy6TDMK0N4QQdqIXDZHFCc/daX0Il:vyzy+Bq4QDatql

Score
10/10
redlinemangodiscoveryinfostealer

Malware Config

Extracted

Family

redline

Botnet

mango

C2

193.233.20.28:4125

Attributes
  • auth_value

    ecf79d7f5227d998a3501c972d915d23

Targets

    • Target

      9cf41bd288bce14a53d1292e89bf1eba92f0fb72d7e76c5df3b9479aaf0dc851N.exe

    • Size

      446KB

    • MD5

      a7bd0155d7c4bdc9ff01337288d4e5c0

    • SHA1

      d679bdc66d0418e02885a18fd21056708f09be8d

    • SHA256

      9cf41bd288bce14a53d1292e89bf1eba92f0fb72d7e76c5df3b9479aaf0dc851

    • SHA512

      acee7d367259b51fbe9c06e5fe63049a5c4f171b604997ba41fa447b8d7f0a2f071b7d452f3823e2d82c4808ba4cbcd870b2e2775b545e8760ecd20cec8b7bc9

    • SSDEEP

      12288:vpsmWy6TDMK0N4QQdqIXDZHFCc/daX0Il:vyzy+Bq4QDatql

    Score
    10/10
    redlinemangodiscoveryinfostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine payload

    • Redline family

      redline
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks