redline | c28219dacb5e54eef5877eec7e62a6d88dd5408eb2ae12157fa7fc9143c8bc0f | Triage

Submit
Reports

Overview

overview

Static

static

0x00080000...44.exe

windows7-x64

0x00080000...44.exe

windows10-2004-x64

Sharing

General

Target

0x000800000001230c-2244.dat
Size

168KB
Sample

240304-wlnspsha5w
MD5

b86009831e8d5622adb3766a04489563
SHA1

5d3c61e02f18c0502d583580aa0e045f27bab631
SHA256

c28219dacb5e54eef5877eec7e62a6d88dd5408eb2ae12157fa7fc9143c8bc0f
SHA512

532fb8767aa2d6d4fe8b29ce076c4e9a39658f5539bae888f007d9d7a35680a5265d9a44b69bf052321e46808347b152f533062976c374088d844f8cae70070b
SSDEEP

3072:/gU7IlKYCPqVyAcAva972RaA2uZu8e8hl:JIIneja972RaA2uZu

Score

10^/10

redline lenox infostealer

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

0x000800000001230c-2244.exe

Resource

win7-20240221-en

redline lenox infostealer

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

0x000800000001230c-2244.exe

Resource

win10v2004-20240226-en

redline lenox infostealer

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Extracted

Family

redline

Botnet

lenox

C2

77.91.124.145:4125

Attributes

auth_value
a5c9c17a250a084c5fd706c1df7c2d4e

Targets

- Target
  
  0x000800000001230c-2244.dat
- Size
  
  168KB
- MD5
  
  b86009831e8d5622adb3766a04489563
- SHA1
  
  5d3c61e02f18c0502d583580aa0e045f27bab631
- SHA256
  
  c28219dacb5e54eef5877eec7e62a6d88dd5408eb2ae12157fa7fc9143c8bc0f
- SHA512
  
  532fb8767aa2d6d4fe8b29ce076c4e9a39658f5539bae888f007d9d7a35680a5265d9a44b69bf052321e46808347b152f533062976c374088d844f8cae70070b
- SSDEEP
  
  3072:/gU7IlKYCPqVyAcAva972RaA2uZu8e8hl:JIIneja972RaA2uZu
Score

10^/10

redline lenox infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

redlinelenoxinfostealer

behavioral2

redlinelenoxinfostealer

© 2018-2024

Terms | Privacy