redline | e401a949ac7801d662b4f05acb3dc55e604de12632f032c6efecbc607a848ba9 | Triage

Submit
Reports

Overview

overview

Static

static

7a81fa7147...3f.exe

windows7_x64

7a81fa7147...3f.exe

windows10_x64

Sharing

General

Target

7a81fa7147deb2a12eab21d8159c733f.exe
Size

20KB
Sample

210214-2l7wp9egp2
MD5

7a81fa7147deb2a12eab21d8159c733f
SHA1

7876b3c4b017e6f66f981a219ceed9e8fd57c230
SHA256

e401a949ac7801d662b4f05acb3dc55e604de12632f032c6efecbc607a848ba9
SHA512

1f0f1eefb81e1cdc2fca0173a7830b1cc2d7b1d06b19b6b5c70edac1ecb352716c4bcb7835507ab34333f82e3e2bff6a4a189ad0c982055cab191864c19a6716

Score

10^/10

redline infostealer

Static task

static1

Behavioral task

behavioral1

Sample

7a81fa7147deb2a12eab21d8159c733f.exe

Resource

win7v20201028

redline infostealer

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

7a81fa7147deb2a12eab21d8159c733f.exe

Resource

win10v20201028

redline infostealer

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  7a81fa7147deb2a12eab21d8159c733f.exe
- Size
  
  20KB
- MD5
  
  7a81fa7147deb2a12eab21d8159c733f
- SHA1
  
  7876b3c4b017e6f66f981a219ceed9e8fd57c230
- SHA256
  
  e401a949ac7801d662b4f05acb3dc55e604de12632f032c6efecbc607a848ba9
- SHA512
  
  1f0f1eefb81e1cdc2fca0173a7830b1cc2d7b1d06b19b6b5c70edac1ecb352716c4bcb7835507ab34333f82e3e2bff6a4a189ad0c982055cab191864c19a6716
Score

10^/10

redline infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine Payload
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

redlineinfostealer

behavioral2

redlineinfostealer

© 2018-2024

Terms | Privacy