redline | 13d02493c68c2b27115bb86059c133425f0b79bba2749081e606627fe8c7cad1 | Triage

Submit
Reports

Overview

overview

Static

static

a60e7dcfb2...70.exe

windows7-x64

a60e7dcfb2...70.exe

windows10-2004-x64

Sharing

General

Target

a60e7dcfb2cd0bfa53819aabe4323f70.exe
Size

3.9MB
Sample

220816-tagh5sahfl
MD5

a60e7dcfb2cd0bfa53819aabe4323f70
SHA1

25074d7f34d98adf057fb0f135c89fc636502d6c
SHA256

13d02493c68c2b27115bb86059c133425f0b79bba2749081e606627fe8c7cad1
SHA512

034e2db3779e2ecc3d0da9da8346a6afbce8a32f7a9c248b7e9fa4134c1f8704cfd1191704e8f5761252d7b8b2d062039188f6c153bc953b5efdf8819cbdded4
SSDEEP

98304:EazVezCug4V6O2PBZzREDW9sViughaPPltwzO1due:DVve2PLt4WTgPPYzYu

Score

10^/10

redline youtube infostealer spyware

Static task

static1

Behavioral task

behavioral1

Sample

a60e7dcfb2cd0bfa53819aabe4323f70.exe

Resource

win7-20220812-en

redline youtube infostealer spyware

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

a60e7dcfb2cd0bfa53819aabe4323f70.exe

Resource

win10v2004-20220812-en

redline youtube infostealer spyware

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Extracted

Family

redline

Botnet

youtube

C2

185.106.93.36:23283

Attributes

auth_value
e07261533d32c87b7a9e908cb5684579

Targets

- Target
  
  a60e7dcfb2cd0bfa53819aabe4323f70.exe
- Size
  
  3.9MB
- MD5
  
  a60e7dcfb2cd0bfa53819aabe4323f70
- SHA1
  
  25074d7f34d98adf057fb0f135c89fc636502d6c
- SHA256
  
  13d02493c68c2b27115bb86059c133425f0b79bba2749081e606627fe8c7cad1
- SHA512
  
  034e2db3779e2ecc3d0da9da8346a6afbce8a32f7a9c248b7e9fa4134c1f8704cfd1191704e8f5761252d7b8b2d062039188f6c153bc953b5efdf8819cbdded4
- SSDEEP
  
  98304:EazVezCug4V6O2PBZzREDW9sViughaPPltwzO1due:DVve2PLt4WTgPPYzYu
Score

10^/10

redline youtube infostealer spyware
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
- Accesses cryptocurrency files/wallets, possible credential harvesting
  spyware
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

redlineyoutubeinfostealerspyware

behavioral2

redlineyoutubeinfostealerspyware

© 2018-2024

Terms | Privacy