redline | 89faf0d32725ef4f23ee0c675a063addf135e68f1801a2026dec31de67a75e3e | Triage

Submit
Reports

Overview

overview

Static

static

3

89faf0d327...3e.exe

windows7-x64

89faf0d327...3e.exe

windows10-2004-x64

Sharing

General

Target

89faf0d32725ef4f23ee0c675a063addf135e68f1801a2026dec31de67a75e3e
Size

370KB
Sample

241109-nd2qlasnbx
MD5

e4692b8f4ececd7ec9cc148eadc77f43
SHA1

70f51cb38a8b883f903a851f8f8fe0dab076f508
SHA256

89faf0d32725ef4f23ee0c675a063addf135e68f1801a2026dec31de67a75e3e
SHA512

ef08ea7e4b479bfbc4ba37a2b71f55d37dd958dc5601020feb7a180dfefb012335ea138aedb4e8f465246bbeec91d8797a2ff9698c50d1d29b339a97165dbf80
SSDEEP

6144:5aq04PVZTOVCKCvwhMxR2HqOvobcjgw3DBMN9S0WLBfgb7ITsqXigaXwVfi:5aq04PvJDwex4HqTbckoti9wtfA7R

Score

10^/10

redline 1 discovery infostealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

89faf0d32725ef4f23ee0c675a063addf135e68f1801a2026dec31de67a75e3e.exe

Resource

win7-20240903-en

redline 1 discovery infostealer

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

89faf0d32725ef4f23ee0c675a063addf135e68f1801a2026dec31de67a75e3e.exe

Resource

win10v2004-20241007-en

redline 1 discovery infostealer

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Extracted

Family

redline

Botnet

1

C2

45.9.20.59:46287

Attributes

auth_value
ec6ada170bcec2e72f0e1f3954547f73

Targets

- Target
  
  89faf0d32725ef4f23ee0c675a063addf135e68f1801a2026dec31de67a75e3e
- Size
  
  370KB
- MD5
  
  e4692b8f4ececd7ec9cc148eadc77f43
- SHA1
  
  70f51cb38a8b883f903a851f8f8fe0dab076f508
- SHA256
  
  89faf0d32725ef4f23ee0c675a063addf135e68f1801a2026dec31de67a75e3e
- SHA512
  
  ef08ea7e4b479bfbc4ba37a2b71f55d37dd958dc5601020feb7a180dfefb012335ea138aedb4e8f465246bbeec91d8797a2ff9698c50d1d29b339a97165dbf80
- SSDEEP
  
  6144:5aq04PVZTOVCKCvwhMxR2HqOvobcjgw3DBMN9S0WLBfgb7ITsqXigaXwVfi:5aq04PvJDwex4HqTbckoti9wtfA7R
Score

10^/10

redline 1 discovery infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
- Redline family
  redline
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

redline1discoveryinfostealer

behavioral2

redline1discoveryinfostealer

© 2018-2024

Terms | Privacy