redline | 610c668380bad93964320bea5957b4c08861e277abc78230a770ad45194905b3 | Triage

Submit
Reports

Overview

overview

Static

static

610c668380...b3.exe

windows7_x64

610c668380...b3.exe

windows10-2004_x64

Sharing

General

Target

610c668380bad93964320bea5957b4c08861e277abc78230a770ad45194905b3
Size

715KB
Sample

220215-tmn4raaahk
MD5

4da64a00d7ff89c04d675f50c32ee458
SHA1

505f39f4039bf5cba0009ea7b7d856f57d31a592
SHA256

610c668380bad93964320bea5957b4c08861e277abc78230a770ad45194905b3
SHA512

d38b6c1aea8763bdfc4e5cbaab8d65a74cf3bdf4d4230efc7005416a58f83742df46b213b91a83967aeb6d9dfccaa038adbf6001569e520b26373fa8f00ab9f4

Score

10^/10

redline new1 infostealer

Static task

static1

Behavioral task

behavioral1

Sample

610c668380bad93964320bea5957b4c08861e277abc78230a770ad45194905b3.exe

Resource

win7-en-20211208

redline new1 infostealer

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

610c668380bad93964320bea5957b4c08861e277abc78230a770ad45194905b3.exe

Resource

win10v2004-en-20220113

redline new1 infostealer

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

redline

Botnet

new1

C2

185.180.220.105:11915

Targets

- Target
  
  610c668380bad93964320bea5957b4c08861e277abc78230a770ad45194905b3
- Size
  
  715KB
- MD5
  
  4da64a00d7ff89c04d675f50c32ee458
- SHA1
  
  505f39f4039bf5cba0009ea7b7d856f57d31a592
- SHA256
  
  610c668380bad93964320bea5957b4c08861e277abc78230a770ad45194905b3
- SHA512
  
  d38b6c1aea8763bdfc4e5cbaab8d65a74cf3bdf4d4230efc7005416a58f83742df46b213b91a83967aeb6d9dfccaa038adbf6001569e520b26373fa8f00ab9f4
Score

10^/10

redline new1 infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine Payload
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

redlinenew1infostealer

behavioral2

redlinenew1infostealer

© 2018-2024

Terms | Privacy