redline | e06070fd4f029f8e245d91fcea0206b95abfc25d28ede0bbbae9512370cde3fa | Triage

Submit
Reports

Overview

overview

Static

static

3

e06070fd4f...fa.exe

windows7-x64

e06070fd4f...fa.exe

windows10-2004-x64

Sharing

General

Target

e06070fd4f029f8e245d91fcea0206b95abfc25d28ede0bbbae9512370cde3fa
Size

394KB
Sample

241109-e95mpaxkbx
MD5

2099928795987c99dfa7a8e21d5752d8
SHA1

ef45e4f617f5e2a29ad5fe1d75a0b3ed9e470f7e
SHA256

e06070fd4f029f8e245d91fcea0206b95abfc25d28ede0bbbae9512370cde3fa
SHA512

e2d738610ce86b8b8654bbf7f41576fc6b66b553d02b1502773d307aaece67d3b7f39f222bfb31dcfe0a42fabef3f3def5b859039849d2961c7c1f5af8b4c421
SSDEEP

6144:4YodGDQYA+HaNjx2LYs6R0u3JmpsiKBn8uzbgwu6L7ITsqSigaTwVfV:4YodGDqBXG6jJispBn8unnn7s

Score

10^/10

redline 1 discovery infostealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

e06070fd4f029f8e245d91fcea0206b95abfc25d28ede0bbbae9512370cde3fa.exe

Resource

win7-20240903-en

redline 1 discovery infostealer

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

e06070fd4f029f8e245d91fcea0206b95abfc25d28ede0bbbae9512370cde3fa.exe

Resource

win10v2004-20241007-en

redline 1 discovery infostealer

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Extracted

Family

redline

Botnet

1

C2

45.9.20.59:46287

Attributes

auth_value
ec6ada170bcec2e72f0e1f3954547f73

Targets

- Target
  
  e06070fd4f029f8e245d91fcea0206b95abfc25d28ede0bbbae9512370cde3fa
- Size
  
  394KB
- MD5
  
  2099928795987c99dfa7a8e21d5752d8
- SHA1
  
  ef45e4f617f5e2a29ad5fe1d75a0b3ed9e470f7e
- SHA256
  
  e06070fd4f029f8e245d91fcea0206b95abfc25d28ede0bbbae9512370cde3fa
- SHA512
  
  e2d738610ce86b8b8654bbf7f41576fc6b66b553d02b1502773d307aaece67d3b7f39f222bfb31dcfe0a42fabef3f3def5b859039849d2961c7c1f5af8b4c421
- SSDEEP
  
  6144:4YodGDQYA+HaNjx2LYs6R0u3JmpsiKBn8uzbgwu6L7ITsqSigaTwVfV:4YodGDqBXG6jJispBn8unnn7s
Score

10^/10

redline 1 discovery infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
- Redline family
  redline
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

redline1discoveryinfostealer

behavioral2

redline1discoveryinfostealer

© 2018-2024

Terms | Privacy