redline | a5f8856f7fc0db48c0f3d7087f9ba8927a4537c08ef8cdebe317a886d9ed4f80 | Triage

Sharing

General

Target

a5f8856f7fc0db48c0f3d7087f9ba8927a4537c08ef8cdebe317a886d9ed4f80
Size

323KB
Sample

220805-mdafnsacd2
MD5

63dc25e61df8c3bac54d49bb7bd688fa
SHA1

a8cbbdcf347b6099157540478920663af9b1641a
SHA256

a5f8856f7fc0db48c0f3d7087f9ba8927a4537c08ef8cdebe317a886d9ed4f80
SHA512

0834d4a7ccd380d768cc00e373d515a6f6e054be2da51915d125386d84d171397793abc9017774d60e56766b3d512b30b1170de53d339f933618827ad74f3611

Score

10^/10

redline af2 discovery infostealer spyware stealer

Malware Config

Extracted

Family

redline

Botnet

AF2

C2

stcontact.top:80

Attributes

auth_value
4d729a2faecb406a0eb1d6fcf30432fa

Targets

- Target
  
  a5f8856f7fc0db48c0f3d7087f9ba8927a4537c08ef8cdebe317a886d9ed4f80
- Size
  
  323KB
- MD5
  
  63dc25e61df8c3bac54d49bb7bd688fa
- SHA1
  
  a8cbbdcf347b6099157540478920663af9b1641a
- SHA256
  
  a5f8856f7fc0db48c0f3d7087f9ba8927a4537c08ef8cdebe317a886d9ed4f80
- SHA512
  
  0834d4a7ccd380d768cc00e373d515a6f6e054be2da51915d125386d84d171397793abc9017774d60e56766b3d512b30b1170de53d339f933618827ad74f3611
Score

10^/10

redline af2 discovery infostealer spyware stealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Accesses cryptocurrency files/wallets, possible credential harvesting
  spyware
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Query Registry

Lateral Movement

Collection

Data from Local System

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

redlineaf2discoveryinfostealerspywarestealer