redline | 9d999627deac3d67198da86f03c85f6b41e3caa929ea311656b592766642ae1f | Triage

Submit
Reports

Overview

overview

Static

static

9d999627de...1f.exe

windows7_x64

9d999627de...1f.exe

windows10-2004_x64

Sharing

General

Target

9d999627deac3d67198da86f03c85f6b41e3caa929ea311656b592766642ae1f
Size

1.2MB
Sample

220520-hpsdeahfhq
MD5

0160e32d94d073452d3d32b7db8bc8a2
SHA1

c4368949e474c4d6009576f0160dbb41b62b9f77
SHA256

9d999627deac3d67198da86f03c85f6b41e3caa929ea311656b592766642ae1f
SHA512

7bcb86f412c5280096ace344395d1d19656d9ce28fca25564ff3eff797ee233ef0b6be3a6d3c8ff50ab1e554d8cc76c946ea7cf80a69b7155ff76ea7ba1897b4

Score

10^/10

redline 1 infostealer

Static task

static1

Behavioral task

behavioral1

Sample

9d999627deac3d67198da86f03c85f6b41e3caa929ea311656b592766642ae1f.exe

Resource

win7-20220414-en

redline 1 infostealer

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

9d999627deac3d67198da86f03c85f6b41e3caa929ea311656b592766642ae1f.exe

Resource

win10v2004-20220414-en

redline 1 infostealer

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

redline

Botnet

1

C2

65.21.239.87:34105

Attributes

auth_value
95517c2a2f56575288c35d9dfde4a6aa

Targets

- Target
  
  9d999627deac3d67198da86f03c85f6b41e3caa929ea311656b592766642ae1f
- Size
  
  1.2MB
- MD5
  
  0160e32d94d073452d3d32b7db8bc8a2
- SHA1
  
  c4368949e474c4d6009576f0160dbb41b62b9f77
- SHA256
  
  9d999627deac3d67198da86f03c85f6b41e3caa929ea311656b592766642ae1f
- SHA512
  
  7bcb86f412c5280096ace344395d1d19656d9ce28fca25564ff3eff797ee233ef0b6be3a6d3c8ff50ab1e554d8cc76c946ea7cf80a69b7155ff76ea7ba1897b4
Score

10^/10

redline 1 infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine Payload
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

redline1infostealer

behavioral2

redline1infostealer

© 2018-2024

Terms | Privacy