redline | 6f47129656ba78dfc0aa06507d64bbc62efb23460c1a8577936e6807f32bd9c7 | Triage

Submit
Reports

Overview

overview

Static

static

1e49053969...cs.exe

windows7-x64

1e49053969...cs.exe

windows10-2004-x64

Sharing

General

Target

1e490539692c6b17ba2ee49163d613a0_NeikiAnalytics.exe
Size

172KB
Sample

240527-eqrxgsgf58
MD5

1e490539692c6b17ba2ee49163d613a0
SHA1

84648ac07914bc18179f085a874514822f1e452a
SHA256

6f47129656ba78dfc0aa06507d64bbc62efb23460c1a8577936e6807f32bd9c7
SHA512

7d4426b2990288ef63f746aacdc1d9169ef14786b544be943489b9c55de4f47802368ddd52e3c0070566cdead7e5088fc9c7ef74eb9032313458d97b7bae05ed
SSDEEP

3072:AWYcGwly5Ci0oxNnGSbEUu/ggOE8e8hD:AGWB00ZqggOE

Score

10^/10

redline grega infostealer

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

1e490539692c6b17ba2ee49163d613a0_NeikiAnalytics.exe

Resource

win7-20240508-en

redline grega infostealer

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

1e490539692c6b17ba2ee49163d613a0_NeikiAnalytics.exe

Resource

win10v2004-20240508-en

redline grega infostealer

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Extracted

Family

redline

Botnet

grega

C2

83.97.73.130:19061

Attributes

auth_value
16e2fbc2847b2270b3f0679e2dd76c8d

Targets

- Target
  
  1e490539692c6b17ba2ee49163d613a0_NeikiAnalytics.exe
- Size
  
  172KB
- MD5
  
  1e490539692c6b17ba2ee49163d613a0
- SHA1
  
  84648ac07914bc18179f085a874514822f1e452a
- SHA256
  
  6f47129656ba78dfc0aa06507d64bbc62efb23460c1a8577936e6807f32bd9c7
- SHA512
  
  7d4426b2990288ef63f746aacdc1d9169ef14786b544be943489b9c55de4f47802368ddd52e3c0070566cdead7e5088fc9c7ef74eb9032313458d97b7bae05ed
- SSDEEP
  
  3072:AWYcGwly5Ci0oxNnGSbEUu/ggOE8e8hD:AGWB00ZqggOE
Score

10^/10

redline grega infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

redlinegregainfostealer

behavioral2

redlinegregainfostealer

© 2018-2024

Terms | Privacy