redline | a929e8b07c34e5e816d1386a99003a13857ea4f06cdf83ebb23d1bdf96ea883d | Triage

Submit
Reports

Overview

overview

Static

static

3

cryptolaemus

windows10-2004-x64

cryptolaemus

windows11-21h2-x64

Sharing

General

Target

a929e8b07c34e5e816d1386a99003a13857ea4f06cdf83ebb23d1bdf96ea883d
Size

726KB
Sample

240726-sxz4bswemr
MD5

9c16f22d96d3ab540b7ddf497842a392
SHA1

97374ee3a62a3cfcef767d195b5d61b0bb3d2761
SHA256

a929e8b07c34e5e816d1386a99003a13857ea4f06cdf83ebb23d1bdf96ea883d
SHA512

578cef0a23e39f67dfa5b7474ac46acd997b19cbe1b7eb0869231154a29d32ad777e532ba1e8fe8bda140284b7c7f327c030b76e5d0a921c05266369a839baf0
SSDEEP

12288:SIAjRd+QnyMw6cw264zMgMPUhWQ3MAlm3KeBTCfBZvyp6fecilqIIE7rT:SzjSLcbPtP893MAQ3KWMyp6f+wDQrT

Score

10^/10

redline discovery infostealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

a929e8b07c34e5e816d1386a99003a13857ea4f06cdf83ebb23d1bdf96ea883d.exe

Resource

win10v2004-20240709-en

redline discovery infostealer

windows10-2004-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

a929e8b07c34e5e816d1386a99003a13857ea4f06cdf83ebb23d1bdf96ea883d.exe

Resource

win11-20240709-en

redline discovery infostealer

windows11-21h2-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  a929e8b07c34e5e816d1386a99003a13857ea4f06cdf83ebb23d1bdf96ea883d
- Size
  
  726KB
- MD5
  
  9c16f22d96d3ab540b7ddf497842a392
- SHA1
  
  97374ee3a62a3cfcef767d195b5d61b0bb3d2761
- SHA256
  
  a929e8b07c34e5e816d1386a99003a13857ea4f06cdf83ebb23d1bdf96ea883d
- SHA512
  
  578cef0a23e39f67dfa5b7474ac46acd997b19cbe1b7eb0869231154a29d32ad777e532ba1e8fe8bda140284b7c7f327c030b76e5d0a921c05266369a839baf0
- SSDEEP
  
  12288:SIAjRd+QnyMw6cw264zMgMPUhWQ3MAlm3KeBTCfBZvyp6fecilqIIE7rT:SzjSLcbPtP893MAQ3KWMyp6f+wDQrT
Score

10^/10

redline discovery infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

redlinediscoveryinfostealer

behavioral2

redlinediscoveryinfostealer

© 2018-2024

Terms | Privacy