redline | abf61356eb007bc0eb51c4208af46dd2ed3d8d94c10dffa7ff5a5c0a4a802a74 | Triage

Submit
Reports

Overview

overview

Static

static

SecuriteIn...07.exe

windows7_x64

SecuriteIn...07.exe

windows10_x64

Sharing

General

Target

SecuriteInfo.com.Trojan.PWS.Siggen2.62670.17922.27207
Size

256KB
Sample

210311-wjm5zz34xn
MD5

8ca675896f6c9ad9fe8deb1cc63bf8f5
SHA1

59ce426a1d26cf3a5a8552da59263475bfded136
SHA256

abf61356eb007bc0eb51c4208af46dd2ed3d8d94c10dffa7ff5a5c0a4a802a74
SHA512

d9225a3903610408d8dfb7447f8ca37a4dec05b1b86ad56c4c99e4f22087ab75a2283e827032ebf03735276601ba87827b303a52ca06c04908314bc16872babc

Score

10^/10

redline infostealer

Static task

static1

Behavioral task

behavioral1

Sample

SecuriteInfo.com.Trojan.PWS.Siggen2.62670.17922.27207.exe

Resource

win7v20201028

redline infostealer

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

SecuriteInfo.com.Trojan.PWS.Siggen2.62670.17922.27207.exe

Resource

win10v20201028

redline infostealer

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  SecuriteInfo.com.Trojan.PWS.Siggen2.62670.17922.27207
- Size
  
  256KB
- MD5
  
  8ca675896f6c9ad9fe8deb1cc63bf8f5
- SHA1
  
  59ce426a1d26cf3a5a8552da59263475bfded136
- SHA256
  
  abf61356eb007bc0eb51c4208af46dd2ed3d8d94c10dffa7ff5a5c0a4a802a74
- SHA512
  
  d9225a3903610408d8dfb7447f8ca37a4dec05b1b86ad56c4c99e4f22087ab75a2283e827032ebf03735276601ba87827b303a52ca06c04908314bc16872babc
Score

10^/10

redline infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine Payload
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

redlineinfostealer

behavioral2

redlineinfostealer

© 2018-2024

Terms | Privacy