redline | 51410421875a08ce24b7cfcdc9f02dee73a42f8da510559fc5ad98011a053ef4 | Triage

Submit
Reports

Overview

overview

Static

static

5141042187...f4.exe

windows7_x64

5141042187...f4.exe

windows10-2004_x64

Sharing

General

Target

51410421875a08ce24b7cfcdc9f02dee73a42f8da510559fc5ad98011a053ef4
Size

1.2MB
Sample

220329-y5jdfaehfp
MD5

004fe49453b7a12a1087ca4fb0baff26
SHA1

0b8dea5738277fb6eaf7256e69aa28cae5ff17c7
SHA256

51410421875a08ce24b7cfcdc9f02dee73a42f8da510559fc5ad98011a053ef4
SHA512

bd10cf487f6f9bca5fcd9cdbc6ae1f6470842cd5678b6a2b135af000a64c6c12dd32452b666c3bab27002671ff42ad7e2a738a831babddf0593a60a48dd38d55

Score

10^/10

redline hacker infostealer

Static task

static1

Behavioral task

behavioral1

Sample

51410421875a08ce24b7cfcdc9f02dee73a42f8da510559fc5ad98011a053ef4.exe

Resource

win7-20220310-en

redline hacker infostealer

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

51410421875a08ce24b7cfcdc9f02dee73a42f8da510559fc5ad98011a053ef4.exe

Resource

win10v2004-en-20220113

redline hacker infostealer

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

redline

Botnet

Hacker

C2

45.139.236.86:35200

Targets

- Target
  
  51410421875a08ce24b7cfcdc9f02dee73a42f8da510559fc5ad98011a053ef4
- Size
  
  1.2MB
- MD5
  
  004fe49453b7a12a1087ca4fb0baff26
- SHA1
  
  0b8dea5738277fb6eaf7256e69aa28cae5ff17c7
- SHA256
  
  51410421875a08ce24b7cfcdc9f02dee73a42f8da510559fc5ad98011a053ef4
- SHA512
  
  bd10cf487f6f9bca5fcd9cdbc6ae1f6470842cd5678b6a2b135af000a64c6c12dd32452b666c3bab27002671ff42ad7e2a738a831babddf0593a60a48dd38d55
Score

10^/10

redline hacker infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine Payload
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

redlinehackerinfostealer

behavioral2

redlinehackerinfostealer

© 2018-2024

Terms | Privacy