redline | 26907bc714c1d296c26e4ea62ec1d0b215bff688e5a06e815ba751d67f611358 | Triage

Submit
Reports

Overview

overview

Static

static

59d79fe77c...98.exe

windows7_x64

59d79fe77c...98.exe

windows10_x64

Sharing

General

Target

59d79fe77c201174fbda9c9d3828df98
Size

24KB
Sample

201117-dwd3lney5a
MD5

59d79fe77c201174fbda9c9d3828df98
SHA1

0efb89f4c597e8966746ddd7d175139e77dadede
SHA256

26907bc714c1d296c26e4ea62ec1d0b215bff688e5a06e815ba751d67f611358
SHA512

3c8185c67d47a85a6bbdb60d538eebdfed063d94bd9e0e1d004051a9c181092f864e18ff508a9d41a4a5e97b0fa81f4e9da2e59b77dfd1bf061331676d31b53f

Score

10^/10

redline infostealer

Static task

static1

Behavioral task

behavioral1

Sample

59d79fe77c201174fbda9c9d3828df98.exe

Resource

win7v20201028

redline infostealer

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

59d79fe77c201174fbda9c9d3828df98.exe

Resource

win10v20201028

redline infostealer

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  59d79fe77c201174fbda9c9d3828df98
- Size
  
  24KB
- MD5
  
  59d79fe77c201174fbda9c9d3828df98
- SHA1
  
  0efb89f4c597e8966746ddd7d175139e77dadede
- SHA256
  
  26907bc714c1d296c26e4ea62ec1d0b215bff688e5a06e815ba751d67f611358
- SHA512
  
  3c8185c67d47a85a6bbdb60d538eebdfed063d94bd9e0e1d004051a9c181092f864e18ff508a9d41a4a5e97b0fa81f4e9da2e59b77dfd1bf061331676d31b53f
Score

10^/10

redline infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine Payload
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

redlineinfostealer

behavioral2

redlineinfostealer

© 2018-2024

Terms | Privacy