redline | 32d501ba88f194dbfeae7aa050da2186c5e80ce1f4c6087f6bd81469bf909a1e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ulz29-main.zip
Size

4.0MB
Sample

240818-aj9fqsvcpf
MD5

7d684ac39c5d8d6a5a7cb6289a0e9db6
SHA1

9b4406a2501fa7d3594a63a0371e5a951c4711fd
SHA256

32d501ba88f194dbfeae7aa050da2186c5e80ce1f4c6087f6bd81469bf909a1e
SHA512

43ed6e68e8bd1336876c99b4709db79ae2eed31d4bec8b87338529632acc43278ca7b00b08ef06adbaa3f465fec9e3a3775b4e6a5e9310825351e0c5e44f3055
SSDEEP

98304:V6tlOZm+xrK63laQwzmH3WKBmwVTH3x+eKtiCmYny2h:VylO8+xKUExzIWKBmwdXxEiYnD

Score

10^/10

redline discovery infostealer

Malware Config

Extracted

Family

redline

C2

45.15.156.142:33597

Targets

- Target
  
  Launcher.dll
- Size
  
  7.5MB
- MD5
  
  cbb81f28c5a509e4f7e3e44bc7da74f8
- SHA1
  
  47145f07bc7d0083d3bd13a9da44bac740952029
- SHA256
  
  413bf9c2cff6fe7b97eae199683df7f6d648fad4c25cb6d0b7dce335eb69edba
- SHA512
  
  bc863ebb2f5fd66f342be8befb49889dd275adb15cff95ed378e185190091589c8d1d7a8902ca889a7b2af81588c731bfa0a930f074fecadd9b47a082966079c
- SSDEEP
  
  98304:koD5geAsEDKN0xOLy2MsmCkQejop7PGXleggxF:kfD/mexOLy0GoNPGXledT
Score

1^/10
behavioral1 behavioral2
- Target
  
  lAuncherSLXLJG.exe
- Size
  
  519KB
- MD5
  
  d9aa145f3a5f5e68f395e5040391b897
- SHA1
  
  be6d0c1fd331f8d07053f210815d5563388a0c53
- SHA256
  
  611769a840e8dd1c759911c4c5a91dccdbb55acc520370acc94e2904ab4e273a
- SHA512
  
  2298a17f45e2da8180a6b1163899230b4a62d6bcd561906c1fc5deaa8f41a9c0247afb155cd2fc9c90f95d94252a09f627f1e177089379a9b522f1b55dbebe94
- SSDEEP
  
  6144:88w3SW3or/Q5oxqt630Xb6sGfsGQpJgUgC8tgfLxoNpNtvbiWlYD1zRqzTrN:88aor/moViUfgJKIxoNTtzoEzTrN
Score

10^/10

redline discovery infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
behavioral3 behavioral4

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

redlinediscoveryinfostealer

behavioral4

redlinediscoveryinfostealer