redline | c76fee2c930e5e171423bb9bb114b824f313582f84129369dd56dc74c98125b3 | Triage

Submit
Reports

Overview

overview

Static

static

1

setup_1688...85.exe

windows7-x64

setup_1688...85.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

setup_1688799593.2225285.exe
Size

968KB
Sample

230709-mp13rscc99
MD5

f4be7528612b9f28d512aef49c754e94
SHA1

7c1a541070ac1156c043f53fea1ac6c4d80f2ccc
SHA256

c76fee2c930e5e171423bb9bb114b824f313582f84129369dd56dc74c98125b3
SHA512

06f016f3c3d5d5332ef144126c74f89b37d95933096a8f08db7f9d2a367c81556e4e105f77f19454cda1218b57edea8eef00820652a3e30a0bc3178c456eb55d
SSDEEP

12288:uf01ptFZmm/BTeZSg/g0q03YrjIGuCv4zbVUdgbk3Ax//3r////////J///////3:ucGSg403wKdU3wtbgm59b

Score

10^/10

redline infostealer spyware

Static task

static1

Behavioral task

behavioral1

Sample

setup_1688799593.2225285.exe

Resource

win7-20230705-en

redline infostealer spyware

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

setup_1688799593.2225285.exe

Resource

win10v2004-20230703-en

redline infostealer spyware

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  setup_1688799593.2225285.exe
- Size
  
  968KB
- MD5
  
  f4be7528612b9f28d512aef49c754e94
- SHA1
  
  7c1a541070ac1156c043f53fea1ac6c4d80f2ccc
- SHA256
  
  c76fee2c930e5e171423bb9bb114b824f313582f84129369dd56dc74c98125b3
- SHA512
  
  06f016f3c3d5d5332ef144126c74f89b37d95933096a8f08db7f9d2a367c81556e4e105f77f19454cda1218b57edea8eef00820652a3e30a0bc3178c456eb55d
- SSDEEP
  
  12288:uf01ptFZmm/BTeZSg/g0q03YrjIGuCv4zbVUdgbk3Ax//3r////////J///////3:ucGSg403wKdU3wtbgm59b
Score

10^/10

redline infostealer spyware
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
- Accesses cryptocurrency files/wallets, possible credential harvesting
  spyware
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

redlineinfostealerspyware

behavioral2

redlineinfostealerspyware

© 2018-2025

Terms | Privacy