redline | 60e545ef4ab879208c03346db3f7112fbdf39577ccd0b8347708cb88004709a1 | Triage

Submit
Reports

Overview

overview

Static

static

60e545ef4a...a1.exe

windows7-x64

60e545ef4a...a1.exe

windows10-2004-x64

Sharing

General

Target

60e545ef4ab879208c03346db3f7112fbdf39577ccd0b8347708cb88004709a1
Size

828KB
Sample

220730-2t3vgscffr
MD5

3bbd87f7dc3749537ac8ff6c44535ca5
SHA1

184f6aaba0d774d27497659b1188c9eee7644b77
SHA256

60e545ef4ab879208c03346db3f7112fbdf39577ccd0b8347708cb88004709a1
SHA512

dea7d2f455de9a3806ca72a9ca617175c290c9ccd7d27f82f940359b4eceb299e05dbe0401033081ab6ec1932cefbed55f6aa257aeb609d7b1874364d5bb1c93

Score

10^/10

redline white infostealer

Static task

static1

Behavioral task

behavioral1

Sample

60e545ef4ab879208c03346db3f7112fbdf39577ccd0b8347708cb88004709a1.exe

Resource

win7-20220718-en

redline white infostealer

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

60e545ef4ab879208c03346db3f7112fbdf39577ccd0b8347708cb88004709a1.exe

Resource

win10v2004-20220722-en

redline white infostealer

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Extracted

Family

redline

Botnet

white

C2

whitegarden.top:80

Targets

- Target
  
  60e545ef4ab879208c03346db3f7112fbdf39577ccd0b8347708cb88004709a1
- Size
  
  828KB
- MD5
  
  3bbd87f7dc3749537ac8ff6c44535ca5
- SHA1
  
  184f6aaba0d774d27497659b1188c9eee7644b77
- SHA256
  
  60e545ef4ab879208c03346db3f7112fbdf39577ccd0b8347708cb88004709a1
- SHA512
  
  dea7d2f455de9a3806ca72a9ca617175c290c9ccd7d27f82f940359b4eceb299e05dbe0401033081ab6ec1932cefbed55f6aa257aeb609d7b1874364d5bb1c93
Score

10^/10

redline white infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

redlinewhiteinfostealer

behavioral2

redlinewhiteinfostealer

© 2018-2024

Terms | Privacy