redline | f4ea51b0b719bd2fa19ce18bdc912b51bf608964d68f7a8dcae304ba8fdb22ec | Triage

Submit
Reports

Overview

overview

Static

static

3

f4ea51b0b7...ec.exe

windows7-x64

f4ea51b0b7...ec.exe

windows10-2004-x64

Sharing

General

Target

f4ea51b0b719bd2fa19ce18bdc912b51bf608964d68f7a8dcae304ba8fdb22ec
Size

371KB
Sample

241106-1r8saaydnh
MD5

40cd52fa977e03d070667b89859d6da9
SHA1

3b72d0b7ffe9303cb857ffa3d7541a260c7de1bb
SHA256

f4ea51b0b719bd2fa19ce18bdc912b51bf608964d68f7a8dcae304ba8fdb22ec
SHA512

4c1be878a9ca14bddafd819657596dd0b78daad27b84825919aad87b2e50d82c6427058d0b477c5427f0cfd772b0fa684c1e05795e2e0c87e6bfe6d54c0cb733
SSDEEP

6144:2KcBXUzYzqHOghMIZkZ9UNA2jnN2/u/6dLob7ITsqXigaXwVfi:2KcBXUzLHOgUWnN2m+87R

Score

10^/10

redline 1 discovery infostealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

f4ea51b0b719bd2fa19ce18bdc912b51bf608964d68f7a8dcae304ba8fdb22ec.exe

Resource

win7-20241023-en

redline 1 discovery infostealer

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

f4ea51b0b719bd2fa19ce18bdc912b51bf608964d68f7a8dcae304ba8fdb22ec.exe

Resource

win10v2004-20241007-en

redline 1 discovery infostealer

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Extracted

Family

redline

Botnet

1

C2

45.9.20.59:46287

Attributes

auth_value
ec6ada170bcec2e72f0e1f3954547f73

Targets

- Target
  
  f4ea51b0b719bd2fa19ce18bdc912b51bf608964d68f7a8dcae304ba8fdb22ec
- Size
  
  371KB
- MD5
  
  40cd52fa977e03d070667b89859d6da9
- SHA1
  
  3b72d0b7ffe9303cb857ffa3d7541a260c7de1bb
- SHA256
  
  f4ea51b0b719bd2fa19ce18bdc912b51bf608964d68f7a8dcae304ba8fdb22ec
- SHA512
  
  4c1be878a9ca14bddafd819657596dd0b78daad27b84825919aad87b2e50d82c6427058d0b477c5427f0cfd772b0fa684c1e05795e2e0c87e6bfe6d54c0cb733
- SSDEEP
  
  6144:2KcBXUzYzqHOghMIZkZ9UNA2jnN2/u/6dLob7ITsqXigaXwVfi:2KcBXUzLHOgUWnN2m+87R
Score

10^/10

redline 1 discovery infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
- Redline family
  redline
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

redline1discoveryinfostealer

behavioral2

redline1discoveryinfostealer

© 2018-2024

Terms | Privacy