redline | c7da839d1af6e7c18d2140790a59240db1bc89e853d1e902e971f4519ad4ae79 | Triage

Submit
Reports

Overview

overview

Static

static

3

test.exe

windows7-x64

7

test.exe

windows10-2004-x64

Sharing

General

Target

test.exe
Size

596KB
Sample

240614-nka68ayekb
MD5

a1878b565203e5a3876c3fbc171d6a48
SHA1

bc1eb9d688c9450aeed477e695b68615c3e5efab
SHA256

c7da839d1af6e7c18d2140790a59240db1bc89e853d1e902e971f4519ad4ae79
SHA512

4cc953770e45de20b1b469357058ff24da8da72166b60e1e799d21c1e91eca70663aa2128da0e3b75d0c84b83bccb9777a4a43423e0c7e6a1b03b6ee01dbb92c
SSDEEP

12288:MjMqKAXm+7SLcWrbHySzFkKykWxSGCJg74VWw32g1IdQwaGV3UuDfA0E2zdWeov2:QrFWrbHbFkkgvCJg7AW8

Score

10^/10

redline @bangbang777 infostealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

test.exe

Resource

win7-20240221-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

test.exe

Resource

win10v2004-20240508-en

redline @bangbang777 infostealer

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Extracted

Family

redline

Botnet

@BangBang777

C2

147.45.47.93:80

Targets

- Target
  
  test.exe
- Size
  
  596KB
- MD5
  
  a1878b565203e5a3876c3fbc171d6a48
- SHA1
  
  bc1eb9d688c9450aeed477e695b68615c3e5efab
- SHA256
  
  c7da839d1af6e7c18d2140790a59240db1bc89e853d1e902e971f4519ad4ae79
- SHA512
  
  4cc953770e45de20b1b469357058ff24da8da72166b60e1e799d21c1e91eca70663aa2128da0e3b75d0c84b83bccb9777a4a43423e0c7e6a1b03b6ee01dbb92c
- SSDEEP
  
  12288:MjMqKAXm+7SLcWrbHySzFkKykWxSGCJg74VWw32g1IdQwaGV3UuDfA0E2zdWeov2:QrFWrbHbFkkgvCJg7AW8
Score

10^/10

redline @bangbang777 infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
- Loads dropped DLL
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

redline@bangbang777infostealer

© 2018-2025

Terms | Privacy