redline | 838d9df9aefbd83ee416cc0dba24c960ae39808a98e4a1087ab29d2bfb58975a | Triage

Submit
Reports

Overview

overview

Static

static

3

838d9df9ae...5a.exe

windows7-x64

838d9df9ae...5a.exe

windows10-2004-x64

Sharing

General

Target

838d9df9aefbd83ee416cc0dba24c960ae39808a98e4a1087ab29d2bfb58975a
Size

371KB
Sample

241107-esrz9svjb1
MD5

4f2c9e78d48e061c19ea0690130bf20e
SHA1

3b002689a018ff30cbf600883c92771b934126c2
SHA256

838d9df9aefbd83ee416cc0dba24c960ae39808a98e4a1087ab29d2bfb58975a
SHA512

da3c8e43b0aafae2bd4bb04e14ef20481fcdf6a2a767c1074ecc0fa9128f3da4f2494122c3254c128043718177f96d77250fc67745c8414c82f705c7de1541a9
SSDEEP

6144:I1c95HIATYxl4z3GTkAe0YnGDw2IKcO/w+XiILU6dqb7ITsqXigaXwVfi:I1c95H7TYrCYkAepCw2oOI4kL7R

Score

10^/10

redline 1 discovery infostealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

838d9df9aefbd83ee416cc0dba24c960ae39808a98e4a1087ab29d2bfb58975a.exe

Resource

win7-20240903-en

redline 1 discovery infostealer

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

838d9df9aefbd83ee416cc0dba24c960ae39808a98e4a1087ab29d2bfb58975a.exe

Resource

win10v2004-20241007-en

redline 1 discovery infostealer

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Extracted

Family

redline

Botnet

1

C2

45.9.20.59:46287

Attributes

auth_value
ec6ada170bcec2e72f0e1f3954547f73

Targets

- Target
  
  838d9df9aefbd83ee416cc0dba24c960ae39808a98e4a1087ab29d2bfb58975a
- Size
  
  371KB
- MD5
  
  4f2c9e78d48e061c19ea0690130bf20e
- SHA1
  
  3b002689a018ff30cbf600883c92771b934126c2
- SHA256
  
  838d9df9aefbd83ee416cc0dba24c960ae39808a98e4a1087ab29d2bfb58975a
- SHA512
  
  da3c8e43b0aafae2bd4bb04e14ef20481fcdf6a2a767c1074ecc0fa9128f3da4f2494122c3254c128043718177f96d77250fc67745c8414c82f705c7de1541a9
- SSDEEP
  
  6144:I1c95HIATYxl4z3GTkAe0YnGDw2IKcO/w+XiILU6dqb7ITsqXigaXwVfi:I1c95H7TYrCYkAepCw2oOI4kL7R
Score

10^/10

redline 1 discovery infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
- Redline family
  redline
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

redline1discoveryinfostealer

behavioral2

redline1discoveryinfostealer

© 2018-2024

Terms | Privacy