redline | 1aa0127dd78187c2d2d18f1d7b5787355dd495ff1e13d60022f7c5503e1e67e9 | Triage

Submit
Reports

Overview

overview

Static

static

1

FiveM Mod.exe

windows7-x64

FiveM Mod.exe

windows10-2004-x64

Sharing

General

Target

FiveM Mod.exe
Size

1.3MB
Sample

230403-x5ws4agg26
MD5

6d4ebc5e271bb681d1f19472a1e2abe8
SHA1

53a3898096d8a871fc759fa9c698e6ce3937f1de
SHA256

1aa0127dd78187c2d2d18f1d7b5787355dd495ff1e13d60022f7c5503e1e67e9
SHA512

fd6b89d4a4e4c170d413bbb3d6b0aa47e0541961a08235a508b972e12f807a015e3721c612059b103b277af6373ec2592d3e7eb89c7af25fe9139838a080b856
SSDEEP

6144:Mt6Lj3Pa2pYpDa9Lc0AOMFQ4nFzuU/Hff:Mt6Lj3C2ZieKhTf

Score

10^/10

redline infostealer

Static task

static1

Behavioral task

behavioral1

Sample

FiveM Mod.exe

Resource

win7-20230220-en

redline infostealer

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

FiveM Mod.exe

Resource

win10v2004-20230220-en

redline infostealer

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Extracted

Family

redline

C2

37.220.87.13:48790

Attributes

auth_value
d4296b013e677361c5ae4bac05054d5b

Targets

- Target
  
  FiveM Mod.exe
- Size
  
  1.3MB
- MD5
  
  6d4ebc5e271bb681d1f19472a1e2abe8
- SHA1
  
  53a3898096d8a871fc759fa9c698e6ce3937f1de
- SHA256
  
  1aa0127dd78187c2d2d18f1d7b5787355dd495ff1e13d60022f7c5503e1e67e9
- SHA512
  
  fd6b89d4a4e4c170d413bbb3d6b0aa47e0541961a08235a508b972e12f807a015e3721c612059b103b277af6373ec2592d3e7eb89c7af25fe9139838a080b856
- SSDEEP
  
  6144:Mt6Lj3Pa2pYpDa9Lc0AOMFQ4nFzuU/Hff:Mt6Lj3C2ZieKhTf
Score

10^/10

redline infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

redlineinfostealer

behavioral2

redlineinfostealer

© 2018-2025

Terms | Privacy