redline | c25e427b4cc4f925eb98334fd1795f2e3dc09eaf4df8cf1342dbca9ae33e18f9 | Triage

Submit
Reports

Overview

overview

Static

static

72b06da5e2...5f.exe

windows7_x64

72b06da5e2...5f.exe

windows10-2004_x64

Sharing

General

Target

72b06da5e2d23ee12b89d891e80bda5f
Size

487KB
Sample

220303-pdq5jabbf3
MD5

72b06da5e2d23ee12b89d891e80bda5f
SHA1

1e31ab5828fa44e161060d64a37dedcac6909b2b
SHA256

c25e427b4cc4f925eb98334fd1795f2e3dc09eaf4df8cf1342dbca9ae33e18f9
SHA512

1c0e8761f814ae511b962b45e9136e095c6ef1113c6e02ac17b5fdba0186d5b2b1c93f24554eb8ba00b6394b92f8f1153e4fe58f868e29d5cd6a4a98acf62d90

Score

10^/10

redline new1 infostealer

Static task

static1

Behavioral task

behavioral1

Sample

72b06da5e2d23ee12b89d891e80bda5f.exe

Resource

win7-20220223-en

redline new1 infostealer

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

72b06da5e2d23ee12b89d891e80bda5f.exe

Resource

win10v2004-en-20220113

redline new1 infostealer

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

redline

Botnet

new1

C2

78.47.178.190:24520

Attributes

auth_value
b9c3e1c18594ac1d05598a5a956de4fb

Targets

- Target
  
  72b06da5e2d23ee12b89d891e80bda5f
- Size
  
  487KB
- MD5
  
  72b06da5e2d23ee12b89d891e80bda5f
- SHA1
  
  1e31ab5828fa44e161060d64a37dedcac6909b2b
- SHA256
  
  c25e427b4cc4f925eb98334fd1795f2e3dc09eaf4df8cf1342dbca9ae33e18f9
- SHA512
  
  1c0e8761f814ae511b962b45e9136e095c6ef1113c6e02ac17b5fdba0186d5b2b1c93f24554eb8ba00b6394b92f8f1153e4fe58f868e29d5cd6a4a98acf62d90
Score

10^/10

redline new1 infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine Payload
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

redlinenew1infostealer

behavioral2

redlinenew1infostealer

© 2018-2024

Terms | Privacy