redline | 78864c02bb8e89a18e6b8a93468143f6a0a1ccad6e798e650b5895750b9db06d | Triage

Submit
Reports

Overview

overview

Static

static

1

file.exe

windows7-x64

file.exe

windows10-2004-x64

7

Sharing

General

Target

file.exe
Size

418KB
Sample

230206-sef8hahg6s
MD5

c5ecd30eb1d0207715c480320be7c37f
SHA1

9725981c9190dfbe2060ce8578ef11e3289c587a
SHA256

78864c02bb8e89a18e6b8a93468143f6a0a1ccad6e798e650b5895750b9db06d
SHA512

8cd7f59ce8ea91ba9c20ebefd7a0e07fa99d5667cc7b122920f62cd66df1939fcda6656641ee00a3e7d54d1315d203a921b5b08c0072da55ff0fb5b905bc31cd
SSDEEP

6144:agtLyAEfVcL87CgvQADcjrcFEbFao8s8saT0Yfnhid6KSqVl/ClRk:a4WAExG0Qec0EbSsaQYfnhi0eHem

Score

10^/10

redline discovery infostealer spyware stealer

Static task

static1

Behavioral task

behavioral1

Sample

file.exe

Resource

win7-20221111-en

redline discovery infostealer spyware stealer

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

file.exe

Resource

win10v2004-20221111-en

discovery spyware stealer

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  file.exe
- Size
  
  418KB
- MD5
  
  c5ecd30eb1d0207715c480320be7c37f
- SHA1
  
  9725981c9190dfbe2060ce8578ef11e3289c587a
- SHA256
  
  78864c02bb8e89a18e6b8a93468143f6a0a1ccad6e798e650b5895750b9db06d
- SHA512
  
  8cd7f59ce8ea91ba9c20ebefd7a0e07fa99d5667cc7b122920f62cd66df1939fcda6656641ee00a3e7d54d1315d203a921b5b08c0072da55ff0fb5b905bc31cd
- SSDEEP
  
  6144:agtLyAEfVcL87CgvQADcjrcFEbFao8s8saT0Yfnhid6KSqVl/ClRk:a4WAExG0Qec0EbSsaQYfnhi0eHem
Score

10^/10

redline discovery infostealer spyware stealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Query Registry

Lateral Movement

Collection

Data from Local System

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

redlinediscoveryinfostealerspywarestealer

behavioral2

discoveryspywarestealer

© 2018-2024

Terms | Privacy