redline | fdad89fe9db1c6caa09660a2abd2a99e73a8f442dec417ff49b22614057c74ca | Triage

Submit
Reports

Overview

overview

Static

static

3

0200d4d610...28.exe

windows7-x64

0200d4d610...28.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

Target

0200d4d6104237ccf6475f3beef56228
Size

415KB
Sample

231114-ljp8msbb39
MD5

0200d4d6104237ccf6475f3beef56228
SHA1

f6e7d9339a664c1a2c344990124d5e5ffe6aec3d
SHA256

fdad89fe9db1c6caa09660a2abd2a99e73a8f442dec417ff49b22614057c74ca
SHA512

835567682922ddc35fda96869372fbb764bfacdb99742d9628e944934657afc28a3161910bb78e8819575f5384386ac3bfab74ae43c65bce594a0f3e1496cb58
SSDEEP

6144:MOykMFF2Wb2U4nDjcAOzyHF5HOt0q9tg36PuocNaZy8ZnC:Uk+F2wccw/HOBa6PuocNaZE

Score

10^/10

redline taiga infostealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

0200d4d6104237ccf6475f3beef56228.exe

Resource

win7-20231020-en

redline taiga infostealer

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

0200d4d6104237ccf6475f3beef56228.exe

Resource

win10v2004-20231023-en

windows10-2004-x64

0 signatures

150 seconds

Malware Config

Extracted

Family

redline

Botnet

taiga

C2

5.42.92.51:19057

Targets

- Target
  
  0200d4d6104237ccf6475f3beef56228
- Size
  
  415KB
- MD5
  
  0200d4d6104237ccf6475f3beef56228
- SHA1
  
  f6e7d9339a664c1a2c344990124d5e5ffe6aec3d
- SHA256
  
  fdad89fe9db1c6caa09660a2abd2a99e73a8f442dec417ff49b22614057c74ca
- SHA512
  
  835567682922ddc35fda96869372fbb764bfacdb99742d9628e944934657afc28a3161910bb78e8819575f5384386ac3bfab74ae43c65bce594a0f3e1496cb58
- SSDEEP
  
  6144:MOykMFF2Wb2U4nDjcAOzyHF5HOt0q9tg36PuocNaZy8ZnC:Uk+F2wccw/HOBa6PuocNaZE
Score

10^/10

redline taiga infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

redlinetaigainfostealer

behavioral2

© 2018-2025

Terms | Privacy