redline | c0f013c38ae330b1c1eccca933a463558f69a3aed67b3b9d902bfd3611cbf105 | Triage

Submit
Reports

Overview

overview

Static

static

509f6bb225...d7.exe

windows7_x64

509f6bb225...d7.exe

windows10-2004_x64

1

Sharing

General

Target

7601726164.zip
Size

870KB
Sample

220624-s9azzagaa8
MD5

107c6e93baafdd6b87ffe81424273450
SHA1

3bb05d189777147f3f7ac1ad298485926e14e79e
SHA256

c0f013c38ae330b1c1eccca933a463558f69a3aed67b3b9d902bfd3611cbf105
SHA512

789d0c569203884ddbd09701991cde869618b1ae6a9bf9d28e4eadb4dc0e9cfba9499d3aa6988daf0bc4b219c8358759f25125e7e1f18b683be4b617549e3794

Score

10^/10

redline 1 infostealer

Static task

static1

Behavioral task

behavioral1

Sample

509f6bb22524158322b48975cd1bb634bc0d9a460389565296b640f62c31cdd7.exe

Resource

win7-20220414-en

redline 1 infostealer

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

509f6bb22524158322b48975cd1bb634bc0d9a460389565296b640f62c31cdd7.exe

Resource

win10v2004-20220414-en

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

redline

Botnet

1

C2

denverbbq.net:80

Targets

- Target
  
  509f6bb22524158322b48975cd1bb634bc0d9a460389565296b640f62c31cdd7
- Size
  
  2.3MB
- MD5
  
  addd93ff7bf2e53744e25b39e6057547
- SHA1
  
  b64ef50db800a0850a7fa89a7f5d13977ac3f1d3
- SHA256
  
  509f6bb22524158322b48975cd1bb634bc0d9a460389565296b640f62c31cdd7
- SHA512
  
  7cb1ad47627b2b5958ece2bf6d509acb89a62f0f0429f24b792701bd8986c3f77cf7ec126acad257ccce6965e77908a27e43620829927cc1b3032f9218756254
Score

10^/10

redline 1 infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine Payload
- Blocklisted process makes network request
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

redline1infostealer

behavioral2

© 2018-2024

Terms | Privacy