redline | c58dd9f6d0cc8c25216faf5d93f984acc3cbb7fd0ec0c78ded4d7ae98b2627b8 | Triage

Submit
Reports

Overview

overview

Static

static

1

acdfd68fcd...32.exe

windows7-x64

acdfd68fcd...32.exe

windows10-2004-x64

Sharing

General

Target

acdfd68fcdfda7180ceb6cbd4f1fab32
Size

301KB
Sample

241111-a23e5sydkm
MD5

acdfd68fcdfda7180ceb6cbd4f1fab32
SHA1

3fed0679391e1bffb189a5a6c18db80dd950a133
SHA256

c58dd9f6d0cc8c25216faf5d93f984acc3cbb7fd0ec0c78ded4d7ae98b2627b8
SHA512

b5d6b3858aaf22e3878959ac5b06da0b64b5eb9b6c4d81e640da8f7363fd5ab2ba8e5f565ac703df229747f905bdf08d1b55259a9c620b571bed3fd25bf90870
SSDEEP

6144:c9oAdBhXnbCib7zW7hAOli0jk6OJQu4SS/p2bSxPyW0lA5JNo:cGAdB94NO0jk6OJ2SG2bEPyRG5ro

Score

10^/10

redline 9-5 discovery infostealer

Static task

static1

Behavioral task

behavioral1

Sample

acdfd68fcdfda7180ceb6cbd4f1fab32.exe

Resource

win7-20241010-en

redline 9-5 discovery infostealer

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

acdfd68fcdfda7180ceb6cbd4f1fab32.exe

Resource

win10v2004-20241007-en

redline 9-5 discovery infostealer

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Extracted

Family

redline

Botnet

9-5

C2

139.99.32.83:43199

Attributes

auth_value
637de2b47f42d9cc7912f71cb6b57b5b

Targets

- Target
  
  acdfd68fcdfda7180ceb6cbd4f1fab32
- Size
  
  301KB
- MD5
  
  acdfd68fcdfda7180ceb6cbd4f1fab32
- SHA1
  
  3fed0679391e1bffb189a5a6c18db80dd950a133
- SHA256
  
  c58dd9f6d0cc8c25216faf5d93f984acc3cbb7fd0ec0c78ded4d7ae98b2627b8
- SHA512
  
  b5d6b3858aaf22e3878959ac5b06da0b64b5eb9b6c4d81e640da8f7363fd5ab2ba8e5f565ac703df229747f905bdf08d1b55259a9c620b571bed3fd25bf90870
- SSDEEP
  
  6144:c9oAdBhXnbCib7zW7hAOli0jk6OJQu4SS/p2bSxPyW0lA5JNo:cGAdB94NO0jk6OJ2SG2bEPyRG5ro
Score

10^/10

redline 9-5 discovery infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
- Redline family
  redline
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

redline9-5discoveryinfostealer

behavioral2

redline9-5discoveryinfostealer

© 2018-2025

Terms | Privacy