redline | 1f854e3e4c222b35548e084b8370b665f1ee814c6b6e3523c3e892a5e8aaf175 | Triage

Submit
Reports

Overview

overview

Static

static

3

0ad0ca8115...c0.exe

windows7-x64

0ad0ca8115...c0.exe

windows10-2004-x64

Sharing

General

Target

0ad0ca8115585ee8a3baa2332cbd27c0
Size

415KB
Sample

241110-3n9araxgqf
MD5

0ad0ca8115585ee8a3baa2332cbd27c0
SHA1

27d1187154dd941767507fd7fe921d684b1ffe85
SHA256

1f854e3e4c222b35548e084b8370b665f1ee814c6b6e3523c3e892a5e8aaf175
SHA512

d8c7e77774f9ec868685dedc3bd622738c1f9efff3e8d3602b554c348d99ac60749f4ee7fe229b029c0824141b98a19cca6f6c1e46ab4316758b568946518ec0
SSDEEP

6144:Wn+zIli8A+EjRPOY8GfVfMY/mkgQDTZsSvYPea6ekgSzbokGBWYSEyP:W+zj85EVWY8GfV7ekZuN27ekgUckGBN

Score

10^/10

redline ww discovery infostealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

0ad0ca8115585ee8a3baa2332cbd27c0.exe

Resource

win7-20241010-en

redline ww discovery infostealer

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

0ad0ca8115585ee8a3baa2332cbd27c0.exe

Resource

win10v2004-20241007-en

redline ww discovery infostealer

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Extracted

Family

redline

Botnet

ww

C2

193.106.191.67:44400

Attributes

auth_value
5a1b28ccd05953f5c3f99729c12427cc

Targets

- Target
  
  0ad0ca8115585ee8a3baa2332cbd27c0
- Size
  
  415KB
- MD5
  
  0ad0ca8115585ee8a3baa2332cbd27c0
- SHA1
  
  27d1187154dd941767507fd7fe921d684b1ffe85
- SHA256
  
  1f854e3e4c222b35548e084b8370b665f1ee814c6b6e3523c3e892a5e8aaf175
- SHA512
  
  d8c7e77774f9ec868685dedc3bd622738c1f9efff3e8d3602b554c348d99ac60749f4ee7fe229b029c0824141b98a19cca6f6c1e46ab4316758b568946518ec0
- SSDEEP
  
  6144:Wn+zIli8A+EjRPOY8GfVfMY/mkgQDTZsSvYPea6ekgSzbokGBWYSEyP:W+zj85EVWY8GfV7ekZuN27ekgUckGBN
Score

10^/10

redline ww discovery infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
- Redline family
  redline
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

redlinewwdiscoveryinfostealer

behavioral2

redlinewwdiscoveryinfostealer

© 2018-2025

Terms | Privacy