redline | 38956c81e3ed9695c20e777858e5fa3592b090fda10d31d5dce4b7bbcd6075e7 | Triage

Submit
Reports

Overview

overview

Static

static

3

38956c81e3...e7.exe

windows7-x64

38956c81e3...e7.exe

windows10-2004-x64

Sharing

General

Target

38956c81e3ed9695c20e777858e5fa3592b090fda10d31d5dce4b7bbcd6075e7
Size

394KB
Sample

241110-pdk9aawkev
MD5

6a1b2bf312d920b0efeed5b130336969
SHA1

b9b9650aad7ebe6ce0a79149aa05f49e943bb90a
SHA256

38956c81e3ed9695c20e777858e5fa3592b090fda10d31d5dce4b7bbcd6075e7
SHA512

fd9d18306a43c943710245d32655b08802ffb21c5f4f409ba9ad6de8af8d7a815e47d1afec28938a32f6f727152f0a3b5138ddb099c2824f63bd750672a90907
SSDEEP

6144:4YodGDQYA+HaNjx2LYs6R0u3JmpsiKBn8uzbgwu6L7ITsqSigaTwVfV:4YodGDqBXG6jJispBn8unnn7s

Score

10^/10

redline 1 discovery infostealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

38956c81e3ed9695c20e777858e5fa3592b090fda10d31d5dce4b7bbcd6075e7.exe

Resource

win7-20240903-en

redline 1 discovery infostealer

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

38956c81e3ed9695c20e777858e5fa3592b090fda10d31d5dce4b7bbcd6075e7.exe

Resource

win10v2004-20241007-en

redline 1 discovery infostealer

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Extracted

Family

redline

Botnet

1

C2

45.9.20.59:46287

Attributes

auth_value
ec6ada170bcec2e72f0e1f3954547f73

Targets

- Target
  
  38956c81e3ed9695c20e777858e5fa3592b090fda10d31d5dce4b7bbcd6075e7
- Size
  
  394KB
- MD5
  
  6a1b2bf312d920b0efeed5b130336969
- SHA1
  
  b9b9650aad7ebe6ce0a79149aa05f49e943bb90a
- SHA256
  
  38956c81e3ed9695c20e777858e5fa3592b090fda10d31d5dce4b7bbcd6075e7
- SHA512
  
  fd9d18306a43c943710245d32655b08802ffb21c5f4f409ba9ad6de8af8d7a815e47d1afec28938a32f6f727152f0a3b5138ddb099c2824f63bd750672a90907
- SSDEEP
  
  6144:4YodGDQYA+HaNjx2LYs6R0u3JmpsiKBn8uzbgwu6L7ITsqSigaTwVfV:4YodGDqBXG6jJispBn8unnn7s
Score

10^/10

redline 1 discovery infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
- Redline family
  redline
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

redline1discoveryinfostealer

behavioral2

redline1discoveryinfostealer

© 2018-2024

Terms | Privacy