redline | ca1153f660a81e50ceb3d4c6b983be9c217e5ca6148aee0c589c6b5759c70283 | Triage

Submit
Reports

Overview

overview

Static

static

5612-326-0...ry.exe

windows7_x64

5612-326-0...ry.exe

windows10-2004_x64

Sharing

General

Target

5612-326-0x0000000000340000-0x0000000000672000-memory.dmp
Size

3.2MB
Sample

220507-vf2xpsfeel
MD5

72bf15144a4b3c84ad5461168c892235
SHA1

73ef1948c275005807e8708639e70a90a84daa67
SHA256

ca1153f660a81e50ceb3d4c6b983be9c217e5ca6148aee0c589c6b5759c70283
SHA512

a3f7aa7fe6b332b11a6f6a528b9cfd3f36375c1460d885b3b93d70a74345170fc31bc1b2a08cbca3a322a510435cc64c98ad507ae1a8786e97b34caa834e37db

Score

10^/10

redline lyla2 infostealer

Static task

static1

Behavioral task

behavioral1

Sample

5612-326-0x0000000000340000-0x0000000000672000-memory.exe

Resource

win7-20220414-en

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

5612-326-0x0000000000340000-0x0000000000672000-memory.exe

Resource

win10v2004-20220414-en

redline lyla2 infostealer

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

redline

Botnet

Lyla2

C2

bonezarisor.xyz:80

Attributes

auth_value
de2a98abc502b86b809fbc366af9256a

Targets

- Target
  
  5612-326-0x0000000000340000-0x0000000000672000-memory.dmp
- Size
  
  3.2MB
- MD5
  
  72bf15144a4b3c84ad5461168c892235
- SHA1
  
  73ef1948c275005807e8708639e70a90a84daa67
- SHA256
  
  ca1153f660a81e50ceb3d4c6b983be9c217e5ca6148aee0c589c6b5759c70283
- SHA512
  
  a3f7aa7fe6b332b11a6f6a528b9cfd3f36375c1460d885b3b93d70a74345170fc31bc1b2a08cbca3a322a510435cc64c98ad507ae1a8786e97b34caa834e37db
Score

10^/10

redline lyla2 infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine Payload
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

redlinelyla2infostealer

© 2018-2024

Terms | Privacy