redline | 91d1f3af8f376534d96978bc87440f581837d9eb9874985d8e2cc2b740df9198 | Triage

Submit
Reports

Overview

overview

Static

static

405b062df9...5a.exe

windows7-x64

405b062df9...5a.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

405b062df9f4d157a70d3e2ff8cac1ddc6700e8c80a219999bbcedc40aadd65a.zip
Size

47KB
Sample

230511-3cqn9sah79
MD5

e85123f461c9c243eede22d326736ef9
SHA1

e699d840333d4fee6b47ea2263b9295867ebc0e3
SHA256

91d1f3af8f376534d96978bc87440f581837d9eb9874985d8e2cc2b740df9198
SHA512

a6be1f53b9fe9c0b0ce3f65dc159b34158b62e040f0b79225f5a9c0b355c8db1d5f35bc2742ec8e13f04908a9aea2c97b50b05f6dd4b431bb98920ffef1ab7b3
SSDEEP

768:Sv3Z/gWyM5FBQMreuffoXc1dj6SUGvI1kKE4AxWw3N2A/wGVdU9ElpTNKYVrqIOd:MZ/gpM5FBQMrpQsreD0CE1xWw3rwGbho

Score

10^/10

redline @test-build infostealer

Static task

static1

@test-build redline

3 signatures

Behavioral task

behavioral1

Sample

405b062df9f4d157a70d3e2ff8cac1ddc6700e8c80a219999bbcedc40aadd65a.exe

Resource

win7-20230220-en

redline @test-build infostealer

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

405b062df9f4d157a70d3e2ff8cac1ddc6700e8c80a219999bbcedc40aadd65a.exe

Resource

win10v2004-20230220-en

redline @test-build infostealer

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Extracted

Family

redline

Botnet

@test-build

C2

49.12.47.66:27973

Attributes

auth_value
60dbbcca6a07014f7d062bc0791cd083

Targets

- Target
  
  405b062df9f4d157a70d3e2ff8cac1ddc6700e8c80a219999bbcedc40aadd65a
- Size
  
  106KB
- MD5
  
  03eb2efffc1b2b57b1a8342d775d4936
- SHA1
  
  95dd3fbed49a98da8abe3b6a62dc1ee758dc8c6a
- SHA256
  
  405b062df9f4d157a70d3e2ff8cac1ddc6700e8c80a219999bbcedc40aadd65a
- SHA512
  
  9e12bbe546376cb33c05eae88765cc8af6795ffbea53322f464d93f7311fadb5e1367dc3e63350af406a54425854967cc747f3bb1c3f861dfa0d9b4c3eda2847
- SSDEEP
  
  1536:ARxakCrtQ2INAFcGLB4aAtP8xq7UXcl2IFWyPfcHLBGcGwKbuZuwrslo0wuei6SX:QCrtQOPw37pfcHA/qwlohYX
Score

10^/10

redline @test-build infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

@test-buildredline

behavioral1

redline@test-buildinfostealer

behavioral2

redline@test-buildinfostealer

© 2018-2025

Terms | Privacy