redline | 4ede545840246025bf3f9056a5c04a356e445cb4c1665ac1ce45cf725fecc82a | Triage

Submit
Reports

Overview

overview

Static

static

3

tmp.exe

windows7-x64

tmp.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

tmp
Size

1.5MB
Sample

231012-n9yntabc83
MD5

1926bb5ac7a4c61110f5ada103aee2d8
SHA1

49040dff3a9e88e65a1745e000982e93cb63a282
SHA256

4ede545840246025bf3f9056a5c04a356e445cb4c1665ac1ce45cf725fecc82a
SHA512

94c0e37842905e76c6df461edb33170c4b6ea85de730eb6481dbc56e815648175c27ac6ec9dddd6419de9162b7d510f38d91be34a5de03f8c85e02634a6d4f1a
SSDEEP

24576:UgtyLp1HmYObEjsiTo/Z/HEQvO3HkzfLjq96:vgHmYObCgtH4r

Score

10^/10

redline infostealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

tmp.exe

Resource

win7-20230831-en

redline infostealer

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

tmp.exe

Resource

win10v2004-20230915-en

redline infostealer

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  tmp
- Size
  
  1.5MB
- MD5
  
  1926bb5ac7a4c61110f5ada103aee2d8
- SHA1
  
  49040dff3a9e88e65a1745e000982e93cb63a282
- SHA256
  
  4ede545840246025bf3f9056a5c04a356e445cb4c1665ac1ce45cf725fecc82a
- SHA512
  
  94c0e37842905e76c6df461edb33170c4b6ea85de730eb6481dbc56e815648175c27ac6ec9dddd6419de9162b7d510f38d91be34a5de03f8c85e02634a6d4f1a
- SSDEEP
  
  24576:UgtyLp1HmYObEjsiTo/Z/HEQvO3HkzfLjq96:vgHmYObCgtH4r
Score

10^/10

redline infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
- Uses the VBS compiler for execution
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scripting

Persistence

Privilege Escalation

Defense Evasion

Scripting

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

redlineinfostealer

behavioral2

redlineinfostealer

© 2018-2025

Terms | Privacy