redline | dfa5818e8eab8da77ba27cf4239a5aebdc0bc6984c205af73f634b0cd2215bde | Triage

Submit
Reports

Overview

overview

Static

static

3

dfa5818e8e...de.exe

windows7-x64

dfa5818e8e...de.exe

windows10-2004-x64

Sharing

General

Target

dfa5818e8eab8da77ba27cf4239a5aebdc0bc6984c205af73f634b0cd2215bde
Size

298KB
Sample

241108-v6kfcayndm
MD5

565ad05154f302d4678e7f4b1a2dc6af
SHA1

15c656e55c53400f9d79bd3f343e7ae9095db1ed
SHA256

dfa5818e8eab8da77ba27cf4239a5aebdc0bc6984c205af73f634b0cd2215bde
SHA512

8a95155eb9c48698c997b79f08e7f964a5361d4b3f0889efa618533a079bab07e2e507d5e156ed34a97846bfb59b5529f494a28d1b148644ea55c1886479bef6
SSDEEP

6144:52ECIjjW+LuLIe0T1eXwp8bXk3X4G1cmL2Gp2eT:5FCIjjW6vTHcmLxAe

Score

10^/10

redline 1 discovery infostealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

dfa5818e8eab8da77ba27cf4239a5aebdc0bc6984c205af73f634b0cd2215bde.exe

Resource

win7-20240903-en

redline 1 discovery infostealer

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

dfa5818e8eab8da77ba27cf4239a5aebdc0bc6984c205af73f634b0cd2215bde.exe

Resource

win10v2004-20241007-en

redline 1 discovery infostealer

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Extracted

Family

redline

Botnet

1

C2

45.9.20.59:46287

Attributes

auth_value
ec6ada170bcec2e72f0e1f3954547f73

Targets

- Target
  
  dfa5818e8eab8da77ba27cf4239a5aebdc0bc6984c205af73f634b0cd2215bde
- Size
  
  298KB
- MD5
  
  565ad05154f302d4678e7f4b1a2dc6af
- SHA1
  
  15c656e55c53400f9d79bd3f343e7ae9095db1ed
- SHA256
  
  dfa5818e8eab8da77ba27cf4239a5aebdc0bc6984c205af73f634b0cd2215bde
- SHA512
  
  8a95155eb9c48698c997b79f08e7f964a5361d4b3f0889efa618533a079bab07e2e507d5e156ed34a97846bfb59b5529f494a28d1b148644ea55c1886479bef6
- SSDEEP
  
  6144:52ECIjjW+LuLIe0T1eXwp8bXk3X4G1cmL2Gp2eT:5FCIjjW6vTHcmLxAe
Score

10^/10

redline 1 discovery infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
- Redline family
  redline
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

redline1discoveryinfostealer

behavioral2

redline1discoveryinfostealer

© 2018-2024

Terms | Privacy