redline | 931210400364c50e45ab51294521789d451406a9538a38fd99cce928c9188f53 | Triage

Submit
Reports

Overview

overview

Static

static

d5a3a3a010...08.exe

windows7_x64

d5a3a3a010...08.exe

windows10_x64

Sharing

General

Target

d5a3a3a01060c1632fa6508b8d267b08.exe
Size

980KB
Sample

201229-d6ssdkd85j
MD5

d5a3a3a01060c1632fa6508b8d267b08
SHA1

85ca1b1273a6a063a60b72bde65825c29da05b4f
SHA256

931210400364c50e45ab51294521789d451406a9538a38fd99cce928c9188f53
SHA512

ffb0d63748eaa509fc1c491a819634b8112de2701760d0abc955592817b8eefc3f934cdf9e25c75510661a94f048af98736dbe2df4b4f62b7655fa1e1f8535f6

Score

10^/10

redline infostealer spyware

Static task

static1

Behavioral task

behavioral1

Sample

d5a3a3a01060c1632fa6508b8d267b08.exe

Resource

win7v20201028

redline infostealer spyware

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

d5a3a3a01060c1632fa6508b8d267b08.exe

Resource

win10v20201028

redline infostealer spyware

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  d5a3a3a01060c1632fa6508b8d267b08.exe
- Size
  
  980KB
- MD5
  
  d5a3a3a01060c1632fa6508b8d267b08
- SHA1
  
  85ca1b1273a6a063a60b72bde65825c29da05b4f
- SHA256
  
  931210400364c50e45ab51294521789d451406a9538a38fd99cce928c9188f53
- SHA512
  
  ffb0d63748eaa509fc1c491a819634b8112de2701760d0abc955592817b8eefc3f934cdf9e25c75510661a94f048af98736dbe2df4b4f62b7655fa1e1f8535f6
Score

10^/10

redline infostealer spyware
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine Payload
- Accesses cryptocurrency files/wallets, possible credential harvesting
  spyware
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Remote System Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

redlineinfostealerspyware

behavioral2

redlineinfostealerspyware

© 2018-2024

Terms | Privacy