redline | ed07c985a733c95aefb4fa4c1fca696471260dd5c72f71f21297a94dd23c159d | Triage

Submit
Reports

Overview

overview

Static

static

7b0057738a...55.exe

windows7_x64

7b0057738a...55.exe

windows10_x64

Sharing

General

Target

7b0057738a02d0501cf9b45b4ef74255.exe
Size

21KB
Sample

210220-g5dc8472d2
MD5

7b0057738a02d0501cf9b45b4ef74255
SHA1

6e39d4d0d612341323fe3f6379613169924f5a6c
SHA256

ed07c985a733c95aefb4fa4c1fca696471260dd5c72f71f21297a94dd23c159d
SHA512

d053e2fcdb750021f18dbc8d64c0cb1678a362852b7b6641f5f48edc1107964ac3cbefe1ca9f88a967babb5892bd3a31c3ba0cf91ddb61b7a9208fa79d614ba8

Score

10^/10

redline infostealer

Static task

static1

Behavioral task

behavioral1

Sample

7b0057738a02d0501cf9b45b4ef74255.exe

Resource

win7v20201028

redline infostealer

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

7b0057738a02d0501cf9b45b4ef74255.exe

Resource

win10v20201028

redline infostealer

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  7b0057738a02d0501cf9b45b4ef74255.exe
- Size
  
  21KB
- MD5
  
  7b0057738a02d0501cf9b45b4ef74255
- SHA1
  
  6e39d4d0d612341323fe3f6379613169924f5a6c
- SHA256
  
  ed07c985a733c95aefb4fa4c1fca696471260dd5c72f71f21297a94dd23c159d
- SHA512
  
  d053e2fcdb750021f18dbc8d64c0cb1678a362852b7b6641f5f48edc1107964ac3cbefe1ca9f88a967babb5892bd3a31c3ba0cf91ddb61b7a9208fa79d614ba8
Score

10^/10

redline infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine Payload
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

redlineinfostealer

behavioral2

redlineinfostealer

© 2018-2024

Terms | Privacy