redline | 6308b2097dcba28565037a65fd9354fe7cecc13df2b7459ef91153760fa8dc42 | Triage

Submit
Reports

Overview

overview

Static

static

1a51248c75...d8.exe

windows7_x64

1a51248c75...d8.exe

windows10_x64

Sharing

General

Target

1a51248c75d910c49f184342a912fe9cb7ace5d8.exe
Size

136KB
Sample

210507-nv6dppw8ca
MD5

7eaf6cacffb2ae2b3c3b6c2b0491e2a5
SHA1

1a51248c75d910c49f184342a912fe9cb7ace5d8
SHA256

6308b2097dcba28565037a65fd9354fe7cecc13df2b7459ef91153760fa8dc42
SHA512

1bd52476a59e05e6ec5de3dc4cf7705cea37668fc8b3d143f269123cb32a582f493ffa093c3fe2d6c647d1ccef31de51c922cf48eb6f96f87c99e3aebc3d6731

Score

10^/10

redline infostealer spyware

Static task

static1

Behavioral task

behavioral1

Sample

1a51248c75d910c49f184342a912fe9cb7ace5d8.exe

Resource

win7v20210410

redline infostealer spyware

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

1a51248c75d910c49f184342a912fe9cb7ace5d8.exe

Resource

win10v20210408

redline infostealer spyware

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  1a51248c75d910c49f184342a912fe9cb7ace5d8.exe
- Size
  
  136KB
- MD5
  
  7eaf6cacffb2ae2b3c3b6c2b0491e2a5
- SHA1
  
  1a51248c75d910c49f184342a912fe9cb7ace5d8
- SHA256
  
  6308b2097dcba28565037a65fd9354fe7cecc13df2b7459ef91153760fa8dc42
- SHA512
  
  1bd52476a59e05e6ec5de3dc4cf7705cea37668fc8b3d143f269123cb32a582f493ffa093c3fe2d6c647d1ccef31de51c922cf48eb6f96f87c99e3aebc3d6731
Score

10^/10

redline infostealer spyware
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine Payload
- Accesses cryptocurrency files/wallets, possible credential harvesting
  spyware
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

redlineinfostealerspyware

behavioral2

redlineinfostealerspyware

© 2018-2024

Terms | Privacy