redline | 2a87e369bfb6c62610763aa4dfc938c4a5253603606c451df477adf899d14701 | Triage

Submit
Reports

Overview

overview

Static

static

3

2a87e369bf...01.exe

windows7-x64

2a87e369bf...01.exe

windows10-2004-x64

Sharing

General

Target

2a87e369bfb6c62610763aa4dfc938c4a5253603606c451df477adf899d14701
Size

371KB
Sample

241110-1b7v2symhp
MD5

4326d9dff83548e7b81c0cfdd5e7b6af
SHA1

fd109c43ebf21f5255db66b73751b18162cbfe05
SHA256

2a87e369bfb6c62610763aa4dfc938c4a5253603606c451df477adf899d14701
SHA512

b3cfcbdbdcbf5b28b01cc47512e33faca75cb3fe92ddee9fc1c6b3c4a70ce6e0bd970c6b1cbf264404e3586131a19a02518e8d9eb551655ac0308de8adc137fc
SSDEEP

6144:I1c95HIATYxl4z3GTkAe0YnGDw2IKcO/w+XiILU6dqb7ITsqXigaXwVfi:I1c95H7TYrCYkAepCw2oOI4kL7R

Score

10^/10

redline 1 discovery infostealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

2a87e369bfb6c62610763aa4dfc938c4a5253603606c451df477adf899d14701.exe

Resource

win7-20240708-en

redline 1 discovery infostealer

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

2a87e369bfb6c62610763aa4dfc938c4a5253603606c451df477adf899d14701.exe

Resource

win10v2004-20241007-en

redline 1 discovery infostealer

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Extracted

Family

redline

Botnet

1

C2

45.9.20.59:46287

Attributes

auth_value
ec6ada170bcec2e72f0e1f3954547f73

Targets

- Target
  
  2a87e369bfb6c62610763aa4dfc938c4a5253603606c451df477adf899d14701
- Size
  
  371KB
- MD5
  
  4326d9dff83548e7b81c0cfdd5e7b6af
- SHA1
  
  fd109c43ebf21f5255db66b73751b18162cbfe05
- SHA256
  
  2a87e369bfb6c62610763aa4dfc938c4a5253603606c451df477adf899d14701
- SHA512
  
  b3cfcbdbdcbf5b28b01cc47512e33faca75cb3fe92ddee9fc1c6b3c4a70ce6e0bd970c6b1cbf264404e3586131a19a02518e8d9eb551655ac0308de8adc137fc
- SSDEEP
  
  6144:I1c95HIATYxl4z3GTkAe0YnGDw2IKcO/w+XiILU6dqb7ITsqXigaXwVfi:I1c95H7TYrCYkAepCw2oOI4kL7R
Score

10^/10

redline 1 discovery infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
- Redline family
  redline
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

redline1discoveryinfostealer

behavioral2

redline1discoveryinfostealer

© 2018-2024

Terms | Privacy