redline | d13a7261a09183ac552eef9c10b889913a4aba2d8acf398df728ba5db5358df6 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

dridex

windows10-2004-x64

Sharing

General

Target

d13a7261a09183ac552eef9c10b889913a4aba2d8acf398df728ba5db5358df6
Size

104KB
Sample

230309-stc5dsda88
MD5

26bfa45039ef6f57f026892087c9808c
SHA1

434dbd3f62501bd129e760e7515b908bb6fa3fba
SHA256

d13a7261a09183ac552eef9c10b889913a4aba2d8acf398df728ba5db5358df6
SHA512

8c1c9e79376ab22cf72d6e5440758f4b2fae4d2fc73142f6f19a0084bbd63865dbc839159e4506bc480f621e7726eceff945f2df64b7c72f482df2ae2ba09d88
SSDEEP

3072:xucUJyyCHYC0GDOhfyJO1fxFVh3DDyK6G:xucMVHpf1W

Score

10^/10

redline m_e_g_a_t_r_a_f infostealer

Static task

static1

m_e_g_a_t_r_a_f redline

2 signatures

Behavioral task

behavioral1

Sample

d13a7261a09183ac552eef9c10b889913a4aba2d8acf398df728ba5db5358df6.exe

Resource

win10v2004-20230220-en

redline m_e_g_a_t_r_a_f infostealer

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Extracted

Family

redline

Botnet

M_E_G_A_T_R_A_F

C2

103.133.111.182:44839

Attributes

auth_value
76aa0a5a4c4d5d7de9b795c904226d53

Targets

- Target
  
  d13a7261a09183ac552eef9c10b889913a4aba2d8acf398df728ba5db5358df6
- Size
  
  104KB
- MD5
  
  26bfa45039ef6f57f026892087c9808c
- SHA1
  
  434dbd3f62501bd129e760e7515b908bb6fa3fba
- SHA256
  
  d13a7261a09183ac552eef9c10b889913a4aba2d8acf398df728ba5db5358df6
- SHA512
  
  8c1c9e79376ab22cf72d6e5440758f4b2fae4d2fc73142f6f19a0084bbd63865dbc839159e4506bc480f621e7726eceff945f2df64b7c72f482df2ae2ba09d88
- SSDEEP
  
  3072:xucUJyyCHYC0GDOhfyJO1fxFVh3DDyK6G:xucMVHpf1W
Score

10^/10

redline m_e_g_a_t_r_a_f infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

m_e_g_a_t_r_a_fredline

behavioral1

redlinem_e_g_a_t_r_a_finfostealer

© 2018-2025

Terms | Privacy