redline | 001d5796ff1df78cda48a9afeaeb04063049d0980f996bd14f311b19154f48c3 | Triage

Submit
Reports

Overview

overview

Static

static

3

001d5796ff...c3.exe

windows7-x64

001d5796ff...c3.exe

windows10-2004-x64

Sharing

General

Target

001d5796ff1df78cda48a9afeaeb04063049d0980f996bd14f311b19154f48c3
Size

394KB
Sample

241109-mbebvavqdj
MD5

b846744b50afe3e0a41c9b6fbdc21756
SHA1

1b156477b9288228225d52773d034485ab56ff92
SHA256

001d5796ff1df78cda48a9afeaeb04063049d0980f996bd14f311b19154f48c3
SHA512

759402a73c98e5a05e8957ce72ea3a0745a0db427c606b95af1b9e8e401660c3469d134f6fb57677c63be0502e9e30775359eb480454457623906acff5f4fb8d
SSDEEP

6144:4YodGDQYA+HaNjx2LYs6R0u3JmpsiKBn8uzbgwu6L7ITsqSigaTwVfV:4YodGDqBXG6jJispBn8unnn7s

Score

10^/10

redline 1 discovery infostealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

001d5796ff1df78cda48a9afeaeb04063049d0980f996bd14f311b19154f48c3.exe

Resource

win7-20241023-en

redline 1 discovery infostealer

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

001d5796ff1df78cda48a9afeaeb04063049d0980f996bd14f311b19154f48c3.exe

Resource

win10v2004-20241007-en

redline 1 discovery infostealer

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Extracted

Family

redline

Botnet

1

C2

45.9.20.59:46287

Attributes

auth_value
ec6ada170bcec2e72f0e1f3954547f73

Targets

- Target
  
  001d5796ff1df78cda48a9afeaeb04063049d0980f996bd14f311b19154f48c3
- Size
  
  394KB
- MD5
  
  b846744b50afe3e0a41c9b6fbdc21756
- SHA1
  
  1b156477b9288228225d52773d034485ab56ff92
- SHA256
  
  001d5796ff1df78cda48a9afeaeb04063049d0980f996bd14f311b19154f48c3
- SHA512
  
  759402a73c98e5a05e8957ce72ea3a0745a0db427c606b95af1b9e8e401660c3469d134f6fb57677c63be0502e9e30775359eb480454457623906acff5f4fb8d
- SSDEEP
  
  6144:4YodGDQYA+HaNjx2LYs6R0u3JmpsiKBn8uzbgwu6L7ITsqSigaTwVfV:4YodGDqBXG6jJispBn8unnn7s
Score

10^/10

redline 1 discovery infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
- Redline family
  redline
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

redline1discoveryinfostealer

behavioral2

redline1discoveryinfostealer

© 2018-2024

Terms | Privacy