redline | 5880defb149df28092091f832476cbabc5f67c8f59e87f3c922204a8ec461791 | Triage

Submit
Reports

Overview

overview

Static

static

94d10248e8...8f.exe

windows7_x64

94d10248e8...8f.exe

windows10_x64

Sharing

General

Target

94d10248e883fe1db598a3cebe5e278f.exe
Size

530KB
Sample

210219-hx4lzcq5we
MD5

94d10248e883fe1db598a3cebe5e278f
SHA1

24e2ac688f803c8f723c789c42db986028c97358
SHA256

5880defb149df28092091f832476cbabc5f67c8f59e87f3c922204a8ec461791
SHA512

73c4173d14e4a93966a2d2fe19c9ff5921278e722fe9772aa17f402ddfcc300b651dc602c7d6feaa441f783f37d447032a30a0fcb3c25936232262a9debb2959

Score

10^/10

redline infostealer

Static task

static1

Behavioral task

behavioral1

Sample

94d10248e883fe1db598a3cebe5e278f.exe

Resource

win7v20201028

redline infostealer

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

94d10248e883fe1db598a3cebe5e278f.exe

Resource

win10v20201028

redline infostealer

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  94d10248e883fe1db598a3cebe5e278f.exe
- Size
  
  530KB
- MD5
  
  94d10248e883fe1db598a3cebe5e278f
- SHA1
  
  24e2ac688f803c8f723c789c42db986028c97358
- SHA256
  
  5880defb149df28092091f832476cbabc5f67c8f59e87f3c922204a8ec461791
- SHA512
  
  73c4173d14e4a93966a2d2fe19c9ff5921278e722fe9772aa17f402ddfcc300b651dc602c7d6feaa441f783f37d447032a30a0fcb3c25936232262a9debb2959
Score

10^/10

redline infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine Payload
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Query Registry

Lateral Movement

Collection

Exfiltration

Command and Control

Web Service

Impact

Tasks

static1

behavioral1

redlineinfostealer

behavioral2

redlineinfostealer

© 2018-2024

Terms | Privacy