redline | af38d6c48da79188980837cf60c19ab2479f20f600780cb33954a2bdf5031db2 | Triage

Submit
Reports

Overview

overview

Static

static

0x00030000...91.exe

windows7-x64

0x00030000...91.exe

windows10-2004-x64

Sharing

General

Target

0x00030000000130ef-91.dat
Size

105KB
Sample

220902-yn32hsbdgq
MD5

d8addc0819f1d016d957e69b3fc15b44
SHA1

717eb260cbd8ff078bfae83d91fc67b2ef6c8355
SHA256

af38d6c48da79188980837cf60c19ab2479f20f600780cb33954a2bdf5031db2
SHA512

ac3a9a3062735ca8ebeefd879e7fbd9fab26474ea76623f5bef00b7915f1eed2b75053078aae565635aafe914d1f0f2c9312578b8e1cbd889571f535b0112bf1
SSDEEP

3072:ti86AdYWG7tTlwQzhtbwiulyddisvw9yU8:87AdlGZpjipyjNU8

Score

10^/10

redline 35k_select infostealer

Static task

static1

35k_select redline

2 signatures

Behavioral task

behavioral1

Sample

0x00030000000130ef-91.exe

Resource

win7-20220901-en

redline 35k_select infostealer

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

0x00030000000130ef-91.exe

Resource

win10v2004-20220812-en

redline 35k_select infostealer

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Extracted

Family

redline

Botnet

35k_SELECT

C2

45.14.49.117:14251

Targets

- Target
  
  0x00030000000130ef-91.dat
- Size
  
  105KB
- MD5
  
  d8addc0819f1d016d957e69b3fc15b44
- SHA1
  
  717eb260cbd8ff078bfae83d91fc67b2ef6c8355
- SHA256
  
  af38d6c48da79188980837cf60c19ab2479f20f600780cb33954a2bdf5031db2
- SHA512
  
  ac3a9a3062735ca8ebeefd879e7fbd9fab26474ea76623f5bef00b7915f1eed2b75053078aae565635aafe914d1f0f2c9312578b8e1cbd889571f535b0112bf1
- SSDEEP
  
  3072:ti86AdYWG7tTlwQzhtbwiulyddisvw9yU8:87AdlGZpjipyjNU8
Score

10^/10

redline 35k_select infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

35k_selectredline

behavioral1

redline35k_selectinfostealer

behavioral2

redline35k_selectinfostealer

© 2018-2024

Terms | Privacy