redline | 830a3f9476ba007ade0c8e45281de542e9e242c587587a3abead3c132b1c02d7 | Triage

Submit
Reports

Overview

overview

Static

static

3

830a3f9476...d7.exe

windows7-x64

830a3f9476...d7.exe

windows10-2004-x64

Sharing

General

Target

830a3f9476ba007ade0c8e45281de542e9e242c587587a3abead3c132b1c02d7
Size

318KB
Sample

241111-avfb2axphs
MD5

9af3cb1ac2091622e2f5335cbc77bf5f
SHA1

d15e7c0016e166c31ab27a39b2cdb2798aab38df
SHA256

830a3f9476ba007ade0c8e45281de542e9e242c587587a3abead3c132b1c02d7
SHA512

e5463b9709e1d85b348820be7339b67d0d4a95f25cf71e3b7f9fd1c301dd6d43d22149567e8bf1e05c74c0e02ad0858af642da909c82236dbbdf4ae63abbfd3c
SSDEEP

6144:VO5vW/hzZMSweS/ekLR9CJg+OtsNbIp7rIdqbfSZjJa7P:hJOReWeW6kOb8rim6hJ

Score

10^/10

redline rosn discovery infostealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

830a3f9476ba007ade0c8e45281de542e9e242c587587a3abead3c132b1c02d7.exe

Resource

win7-20240903-en

redline rosn discovery infostealer

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

830a3f9476ba007ade0c8e45281de542e9e242c587587a3abead3c132b1c02d7.exe

Resource

win10v2004-20241007-en

redline rosn discovery infostealer

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Extracted

Family

redline

Botnet

rosn

C2

176.113.115.145:4125

Attributes

auth_value
050a19e1db4d0024b0f23b37dcf961f4

Targets

- Target
  
  830a3f9476ba007ade0c8e45281de542e9e242c587587a3abead3c132b1c02d7
- Size
  
  318KB
- MD5
  
  9af3cb1ac2091622e2f5335cbc77bf5f
- SHA1
  
  d15e7c0016e166c31ab27a39b2cdb2798aab38df
- SHA256
  
  830a3f9476ba007ade0c8e45281de542e9e242c587587a3abead3c132b1c02d7
- SHA512
  
  e5463b9709e1d85b348820be7339b67d0d4a95f25cf71e3b7f9fd1c301dd6d43d22149567e8bf1e05c74c0e02ad0858af642da909c82236dbbdf4ae63abbfd3c
- SSDEEP
  
  6144:VO5vW/hzZMSweS/ekLR9CJg+OtsNbIp7rIdqbfSZjJa7P:hJOReWeW6kOb8rim6hJ
Score

10^/10

redline rosn discovery infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
- Redline family
  redline
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

redlinerosndiscoveryinfostealer

behavioral2

redlinerosndiscoveryinfostealer

© 2018-2025

Terms | Privacy