redline | fbe4ed231e6ed2f42488939d352f10035f95862c28b5747bd08b6838fd0d5683 | Triage

Submit
Reports

Overview

overview

Static

static

1

dridex

windows10-2004-x64

Sharing

General

Target

fbe4ed231e6ed2f42488939d352f10035f95862c28b5747bd08b6838fd0d5683
Size

379KB
Sample

230313-t9sqfsdc6y
MD5

2f7380ee06428f838b8ee0134118a34e
SHA1

20fac60b85acafcff16355b64e2b52cd79d9faef
SHA256

fbe4ed231e6ed2f42488939d352f10035f95862c28b5747bd08b6838fd0d5683
SHA512

18dd88b0ad09c2b4a522e129c7ac60413264090f808252bd61f744fbdb34bf34e2bf591f41b56483ca5c121a7b9e53d163e2e18944166b1892fb10ef1f3eb469
SSDEEP

6144:hZALHtSgAVIiuMXyChmXSGYHCJ+xdATJrGnAOUtXHg+dDhuWPRAtT:nADttsMMCChgSGYiJwAdtXddMLZ

Score

10^/10

redline discovery infostealer spyware stealer

Static task

static1

Behavioral task

behavioral1

Sample

fbe4ed231e6ed2f42488939d352f10035f95862c28b5747bd08b6838fd0d5683.exe

Resource

win10v2004-20230220-en

redline discovery infostealer spyware stealer

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  fbe4ed231e6ed2f42488939d352f10035f95862c28b5747bd08b6838fd0d5683
- Size
  
  379KB
- MD5
  
  2f7380ee06428f838b8ee0134118a34e
- SHA1
  
  20fac60b85acafcff16355b64e2b52cd79d9faef
- SHA256
  
  fbe4ed231e6ed2f42488939d352f10035f95862c28b5747bd08b6838fd0d5683
- SHA512
  
  18dd88b0ad09c2b4a522e129c7ac60413264090f808252bd61f744fbdb34bf34e2bf591f41b56483ca5c121a7b9e53d163e2e18944166b1892fb10ef1f3eb469
- SSDEEP
  
  6144:hZALHtSgAVIiuMXyChmXSGYHCJ+xdATJrGnAOUtXHg+dDhuWPRAtT:nADttsMMCChgSGYiJwAdtXddMLZ
Score

10^/10

redline discovery infostealer spyware stealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Query Registry

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

redlinediscoveryinfostealerspywarestealer

© 2018-2025

Terms | Privacy