redline | 79af824c2511cf8c07b71df07ffa95badbf3e6a418885a6f7a66b264422efd90 | Triage

Submit
Reports

Overview

overview

Static

static

3

XioSpark.exe

windows7-x64

XioSpark.exe

windows10-2004-x64

Sharing

General

Target

XioSpark.exe
Size

303KB
Sample

240423-h6gcgaed9w
MD5

d110240d28bd7cfc01f1fddd76c765d4
SHA1

f4aa010ce8b2f86866db4777f3eec7208bd333d7
SHA256

79af824c2511cf8c07b71df07ffa95badbf3e6a418885a6f7a66b264422efd90
SHA512

e8a6b720ade625181d8726be3584352baa8e04b9eb6b89d46c6b6bbcf814ef956bba6d4b1f680bfd3e96b2bfe391b539d58278aa5cc348dd9ab1f3b068fa9d5b
SSDEEP

6144:FdTtNZDGHLeI0vRc7CSyeCzXxx9SLmNeI/44H/7:Pt7DGHN+VXN/NZ/7

Score

10^/10

redline infostealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

XioSpark.exe

Resource

win7-20240221-en

redline infostealer

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

XioSpark.exe

Resource

win10v2004-20240412-en

redline infostealer

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  XioSpark.exe
- Size
  
  303KB
- MD5
  
  d110240d28bd7cfc01f1fddd76c765d4
- SHA1
  
  f4aa010ce8b2f86866db4777f3eec7208bd333d7
- SHA256
  
  79af824c2511cf8c07b71df07ffa95badbf3e6a418885a6f7a66b264422efd90
- SHA512
  
  e8a6b720ade625181d8726be3584352baa8e04b9eb6b89d46c6b6bbcf814ef956bba6d4b1f680bfd3e96b2bfe391b539d58278aa5cc348dd9ab1f3b068fa9d5b
- SSDEEP
  
  6144:FdTtNZDGHLeI0vRc7CSyeCzXxx9SLmNeI/44H/7:Pt7DGHN+VXN/NZ/7
Score

10^/10

redline infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

redlineinfostealer

behavioral2

redlineinfostealer

© 2018-2024

Terms | Privacy