redline | 50713ddde552c948328e51b20ea03475ce5f70dfdda32e60a8d10afc431f7482 | Triage

Submit
Reports

Overview

overview

Static

static

3

50713ddde5...82.exe

windows7-x64

50713ddde5...82.exe

windows10-2004-x64

Sharing

General

Target

50713ddde552c948328e51b20ea03475ce5f70dfdda32e60a8d10afc431f7482
Size

1.8MB
Sample

241110-13c5rawenp
MD5

638fa83fc8f2137596493f9c2ce0af93
SHA1

a4521a339070889b453ddafab28793e6169c5499
SHA256

50713ddde552c948328e51b20ea03475ce5f70dfdda32e60a8d10afc431f7482
SHA512

5a8a443e25b80b2c258bab76d1baf7cfbd80ac69f7918c37f34320f86fa986b04d45ea25939b86ab90254652abba93c5d5f7c47cf4ec11bdb04d13e1b36e21e8
SSDEEP

24576:BE51LZmjqi/RQD8nxD1yh3LdlXo1rgLtVVCXw2y2cAJm:CRZmjH5hD1IPVQRo

Score

10^/10

redline usa1 discovery infostealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

50713ddde552c948328e51b20ea03475ce5f70dfdda32e60a8d10afc431f7482.exe

Resource

win7-20240903-en

redline usa1 discovery infostealer

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

50713ddde552c948328e51b20ea03475ce5f70dfdda32e60a8d10afc431f7482.exe

Resource

win10v2004-20241007-en

redline usa1 discovery infostealer

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Extracted

Family

redline

Botnet

usa1

C2

212.114.52.221:9339

Attributes

auth_value
1bf2a129a7db572de79a4e48155856fb

Targets

- Target
  
  50713ddde552c948328e51b20ea03475ce5f70dfdda32e60a8d10afc431f7482
- Size
  
  1.8MB
- MD5
  
  638fa83fc8f2137596493f9c2ce0af93
- SHA1
  
  a4521a339070889b453ddafab28793e6169c5499
- SHA256
  
  50713ddde552c948328e51b20ea03475ce5f70dfdda32e60a8d10afc431f7482
- SHA512
  
  5a8a443e25b80b2c258bab76d1baf7cfbd80ac69f7918c37f34320f86fa986b04d45ea25939b86ab90254652abba93c5d5f7c47cf4ec11bdb04d13e1b36e21e8
- SSDEEP
  
  24576:BE51LZmjqi/RQD8nxD1yh3LdlXo1rgLtVVCXw2y2cAJm:CRZmjH5hD1IPVQRo
Score

10^/10

redline usa1 discovery infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
- Redline family
  redline
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

redlineusa1discoveryinfostealer

behavioral2

redlineusa1discoveryinfostealer

© 2018-2025

Terms | Privacy