redline | f806835a1b630dd4cccb4621a5f6c551ab129e4c697a943367d3ca27f58f3402 | Triage

Submit
Reports

Overview

overview

Static

static

1708-59-0x...ry.exe

windows7_x64

1708-59-0x...ry.exe

windows10-2004_x64

Sharing

General

Target

1708-59-0x0000000002550000-0x0000000002584000-memory.dmp
Size

208KB
Sample

220702-bpptyscbfq
MD5

1028e8b370aa3bd0a4391bb9b23201b7
SHA1

5eaa00299b2b4910ca5ecb9e2f044ce4becc5920
SHA256

f806835a1b630dd4cccb4621a5f6c551ab129e4c697a943367d3ca27f58f3402
SHA512

7965b426c822d82bc85486d391e33e6ee807918ef12da51a1fbe1da24c886cb54eba7ffc981be601f2b2314cbc58cbb2bce62751050b30c86ab0811ddb40b498

Score

10^/10

redline 2 infostealer

Static task

static1

Behavioral task

behavioral1

Sample

1708-59-0x0000000002550000-0x0000000002584000-memory.exe

Resource

win7-20220414-en

redline 2 infostealer

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

1708-59-0x0000000002550000-0x0000000002584000-memory.exe

Resource

win10v2004-20220414-en

redline 2 infostealer

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

redline

Botnet

2

C2

193.124.22.7:35632

Attributes

auth_value
59967defa326eeea5c873678294c84b0

Targets

- Target
  
  1708-59-0x0000000002550000-0x0000000002584000-memory.dmp
- Size
  
  208KB
- MD5
  
  1028e8b370aa3bd0a4391bb9b23201b7
- SHA1
  
  5eaa00299b2b4910ca5ecb9e2f044ce4becc5920
- SHA256
  
  f806835a1b630dd4cccb4621a5f6c551ab129e4c697a943367d3ca27f58f3402
- SHA512
  
  7965b426c822d82bc85486d391e33e6ee807918ef12da51a1fbe1da24c886cb54eba7ffc981be601f2b2314cbc58cbb2bce62751050b30c86ab0811ddb40b498
Score

10^/10

redline 2 infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine Payload
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

redline2infostealer

behavioral2

redline2infostealer

© 2018-2024

Terms | Privacy