redline | 9d7429145a7643272e55fb1e756582ea9e3dd2daf182c518ee9816f44d81cf81 | Triage

Submit
Reports

Overview

overview

Static

static

3

Setupppp.rar

windows10-2004-x64

Sharing

General

Target

Setupppp.rar
Size

2.7MB
Sample

230607-z7skkagf2w
MD5

b92274784508801cc505787210efecc7
SHA1

edddb4e063c4c1b06de759479bc368817601e6c3
SHA256

9d7429145a7643272e55fb1e756582ea9e3dd2daf182c518ee9816f44d81cf81
SHA512

e0b2bd505e515eb6c0f9d303cc3d3fc3797a23d36c38e43ff46e808bd4b920e6ea2f5b2fe7e836a4b4ff2a555956e2e8bac379ee63ccbe75fac9a5ced63d034c
SSDEEP

49152:i+7Kh+VRGEfU4z0J3VVHTych7Rwy0KputAmb6iqnOyG/0Onc63bg:iiKhcGMcfHTygl0uutJzfg

Score

10^/10

redline infostealer spyware

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

Setupppp.rar

Resource

win10v2004-20230220-es

redline infostealer spyware

windows10-2004-x64

13 signatures

600 seconds

Malware Config

Targets

- Target
  
  Setupppp.rar
- Size
  
  2.7MB
- MD5
  
  b92274784508801cc505787210efecc7
- SHA1
  
  edddb4e063c4c1b06de759479bc368817601e6c3
- SHA256
  
  9d7429145a7643272e55fb1e756582ea9e3dd2daf182c518ee9816f44d81cf81
- SHA512
  
  e0b2bd505e515eb6c0f9d303cc3d3fc3797a23d36c38e43ff46e808bd4b920e6ea2f5b2fe7e836a4b4ff2a555956e2e8bac379ee63ccbe75fac9a5ced63d034c
- SSDEEP
  
  49152:i+7Kh+VRGEfU4z0J3VVHTych7Rwy0KputAmb6iqnOyG/0Onc63bg:iiKhcGMcfHTygl0uutJzfg
Score

10^/10

redline infostealer spyware
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
- Executes dropped EXE
- Accesses cryptocurrency files/wallets, possible credential harvesting
  spyware
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

redlineinfostealerspyware

© 2018-2025

Terms | Privacy