Overview

overview

10

Static

static

3

a17efc25f8...55.exe

windows7-x64

10

a17efc25f8...55.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a17efc25f8adbb5cd1670aa268c6d78b293945bcfbe54bed2c2fcebccf5f5c55.exe

  • Size

    452KB

  • Sample

    241124-hvpjpsyqa1

  • MD5

    25c3ba8be65504dc8357d23cb638c3ef

  • SHA1

    26e9c927004645d43f6273c014e90884c2e1f1ff

  • SHA256

    a17efc25f8adbb5cd1670aa268c6d78b293945bcfbe54bed2c2fcebccf5f5c55

  • SHA512

    d86886b0c4f0fb99742dd8ce5d614d362c86f978aa3c304387536f5147740f1ed51ba4a35b1d8f3838be4e773e94c33b96e532b7beeecb0f778a772f9f0c2c14

  • SSDEEP

    12288:TSOyO8hAMF5B+y+576AtAc+YNjip8XjTYWbXE:TrvSf+l5LlvjY8XPC

Score
10/10
redlinepaladindiscoveryinfostealer

Malware Config

Extracted

Family

redline

Botnet

paladin

C2

193.150.103.37:29118

Attributes
  • auth_value

    f27db372188045eefdf974196ead3dae

Targets

    • Target

      a17efc25f8adbb5cd1670aa268c6d78b293945bcfbe54bed2c2fcebccf5f5c55.exe

    • Size

      452KB

    • MD5

      25c3ba8be65504dc8357d23cb638c3ef

    • SHA1

      26e9c927004645d43f6273c014e90884c2e1f1ff

    • SHA256

      a17efc25f8adbb5cd1670aa268c6d78b293945bcfbe54bed2c2fcebccf5f5c55

    • SHA512

      d86886b0c4f0fb99742dd8ce5d614d362c86f978aa3c304387536f5147740f1ed51ba4a35b1d8f3838be4e773e94c33b96e532b7beeecb0f778a772f9f0c2c14

    • SSDEEP

      12288:TSOyO8hAMF5B+y+576AtAc+YNjip8XjTYWbXE:TrvSf+l5LlvjY8XPC

    Score
    10/10
    redlinepaladindiscoveryinfostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine payload

    • Redline family

      redline
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks