redline | 52bd7f9f449839137eac7a78bfc3faa369ce0e2b98d8ca0a47949a8b7faef93c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

52bd7f9f449839137eac7a78bfc3faa369ce0e2b98d8ca0a47949a8b7faef93c
Size

176KB
Sample

241110-h3epgasekd
MD5

fca5496cc17a360ed585d588b65b2f91
SHA1

d7ac4991caedfe2ac37768a272fa0717de2725d8
SHA256

52bd7f9f449839137eac7a78bfc3faa369ce0e2b98d8ca0a47949a8b7faef93c
SHA512

40fdb4e32fc604142721c541c10d20c18cfc427a5a13685e1b10c410e2d2c300f0eb0985b70240edef8fc22d130373ddfcc7dbd79114ea7a1559acfd35a0aff8
SSDEEP

3072:biNW+4GCX57p+1BldS+yqF/ljL7ahgWdImNi49p9L14:bz+4Gi7e/SXgKP9L

Score

10^/10

redline sewpalpadin discovery infostealer

Malware Config

Extracted

Family

redline

Botnet

SewPalpadin

C2

185.215.113.29:26828

Attributes

auth_value
7a741aa449c2131b60755b6dc189af74

Targets

- Target
  
  52bd7f9f449839137eac7a78bfc3faa369ce0e2b98d8ca0a47949a8b7faef93c
- Size
  
  176KB
- MD5
  
  fca5496cc17a360ed585d588b65b2f91
- SHA1
  
  d7ac4991caedfe2ac37768a272fa0717de2725d8
- SHA256
  
  52bd7f9f449839137eac7a78bfc3faa369ce0e2b98d8ca0a47949a8b7faef93c
- SHA512
  
  40fdb4e32fc604142721c541c10d20c18cfc427a5a13685e1b10c410e2d2c300f0eb0985b70240edef8fc22d130373ddfcc7dbd79114ea7a1559acfd35a0aff8
- SSDEEP
  
  3072:biNW+4GCX57p+1BldS+yqF/ljL7ahgWdImNi49p9L14:bz+4Gi7e/SXgKP9L
Score

10^/10

redline sewpalpadin discovery infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
- Redline family
  redline
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

sewpalpadinredline

behavioral1

redlinesewpalpadindiscoveryinfostealer

behavioral2

redlinesewpalpadindiscoveryinfostealer