redline | 36294addc4e1189fc1b7045c0fc242c5b9c29f4a5a28c70e5082ad6376e19b7f | Triage

Submit
Reports

Overview

overview

Static

static

3

36294addc4...7f.exe

windows7-x64

36294addc4...7f.exe

windows10-2004-x64

Sharing

General

Target

36294addc4e1189fc1b7045c0fc242c5b9c29f4a5a28c70e5082ad6376e19b7f
Size

297KB
Sample

241110-cr3dhawraw
MD5

bff4cff64a26dfbb6e719e215d8a934d
SHA1

df43e5f6e0b67ea3a4c7568b286f86e529fa3f7e
SHA256

36294addc4e1189fc1b7045c0fc242c5b9c29f4a5a28c70e5082ad6376e19b7f
SHA512

5c552109d7950b85e90c532fc4c0ea29a5ecae0d098b4738e5583cde0cebfd9de5b2ff8afcf84f3c0b22137cca2c207df50f66b1659f801f38b0fc9bb3e06629
SSDEEP

6144:rvHwCMbovQJ2lzmGk2l3u7ZOuc50Cb/7rRSUbHMfG4:rPwCMbovQJ6N3u7ZeR/7Ce

Score

10^/10

redline 1 discovery infostealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

36294addc4e1189fc1b7045c0fc242c5b9c29f4a5a28c70e5082ad6376e19b7f.exe

Resource

win7-20241010-en

redline 1 discovery infostealer

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

36294addc4e1189fc1b7045c0fc242c5b9c29f4a5a28c70e5082ad6376e19b7f.exe

Resource

win10v2004-20241007-en

redline 1 discovery infostealer

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Extracted

Family

redline

Botnet

1

C2

45.9.20.59:46287

Attributes

auth_value
ec6ada170bcec2e72f0e1f3954547f73

Targets

- Target
  
  36294addc4e1189fc1b7045c0fc242c5b9c29f4a5a28c70e5082ad6376e19b7f
- Size
  
  297KB
- MD5
  
  bff4cff64a26dfbb6e719e215d8a934d
- SHA1
  
  df43e5f6e0b67ea3a4c7568b286f86e529fa3f7e
- SHA256
  
  36294addc4e1189fc1b7045c0fc242c5b9c29f4a5a28c70e5082ad6376e19b7f
- SHA512
  
  5c552109d7950b85e90c532fc4c0ea29a5ecae0d098b4738e5583cde0cebfd9de5b2ff8afcf84f3c0b22137cca2c207df50f66b1659f801f38b0fc9bb3e06629
- SSDEEP
  
  6144:rvHwCMbovQJ2lzmGk2l3u7ZOuc50Cb/7rRSUbHMfG4:rPwCMbovQJ6N3u7ZeR/7Ce
Score

10^/10

redline 1 discovery infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
- Redline family
  redline
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

redline1discoveryinfostealer

behavioral2

redline1discoveryinfostealer

© 2018-2024

Terms | Privacy