Overview

overview

10

Static

static

SecuriteIn...60.exe

windows7_x64

10

SecuriteIn...60.exe

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    SecuriteInfo.com.W32.AIDetect.malware2.12561.1160

  • Size

    160KB

  • Sample

    210310-al36v9yyve

  • MD5

    73f7fb41b4a9c097171da9a8681114fe

  • SHA1

    6989870e0507a23a45e7ec29f200c56a675a80c8

  • SHA256

    c7d5bfc61e4ad60f64bbe4ed6de1774968ad5b66cae98bd5f93f27eb4067d4be

  • SHA512

    43eec0d09b780fd6d669e0e55ab310bba5a56b58fa6c98b4bff0e7aa99f1778dea9adff180b9fb9a7271a4a5726cfa6212ef97d363d147affa20578f4f98daa0

Score
10/10
redlineinfostealer

Malware Config

Targets

    • Target

      SecuriteInfo.com.W32.AIDetect.malware2.12561.1160

    • Size

      160KB

    • MD5

      73f7fb41b4a9c097171da9a8681114fe

    • SHA1

      6989870e0507a23a45e7ec29f200c56a675a80c8

    • SHA256

      c7d5bfc61e4ad60f64bbe4ed6de1774968ad5b66cae98bd5f93f27eb4067d4be

    • SHA512

      43eec0d09b780fd6d669e0e55ab310bba5a56b58fa6c98b4bff0e7aa99f1778dea9adff180b9fb9a7271a4a5726cfa6212ef97d363d147affa20578f4f98daa0

    Score
    10/10
    redlineinfostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine Payload

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

1
T1130

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks