redline | 8e1ba7bbfabb05d14b02c9f0ccf392c90162549e08b965f329743306b55e5d3e | Triage

Submit
Reports

Overview

overview

Static

static

3

8e1ba7bbfa...3e.exe

windows7-x64

8e1ba7bbfa...3e.exe

windows10-2004-x64

Sharing

General

Target

8e1ba7bbfabb05d14b02c9f0ccf392c90162549e08b965f329743306b55e5d3e
Size

371KB
Sample

241111-fszwjstflh
MD5

32727299573206a20dfa94e7450da5a3
SHA1

a9ca244d870c80c76d563d5521839e6857303cf0
SHA256

8e1ba7bbfabb05d14b02c9f0ccf392c90162549e08b965f329743306b55e5d3e
SHA512

f82acdda7ce8a2d12e7c901ebcfad39f2f88de1b90776be503427f1969b543127e3e0f9d2ad195dc98cf5347774a99c89f446cead1cc5f8bd8b638280f56f65f
SSDEEP

6144:OCXITG+urF+W2/cH8J6yr/bAxgPLrk1sx5b7ITsqXigaXwVfZ:OCXITDDWmx6BOj8O17R

Score

10^/10

redline 1 discovery infostealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

8e1ba7bbfabb05d14b02c9f0ccf392c90162549e08b965f329743306b55e5d3e.exe

Resource

win7-20240903-en

redline 1 discovery infostealer

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

8e1ba7bbfabb05d14b02c9f0ccf392c90162549e08b965f329743306b55e5d3e.exe

Resource

win10v2004-20241007-en

redline 1 discovery infostealer

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Extracted

Family

redline

Botnet

1

C2

45.9.20.59:46287

Attributes

auth_value
ec6ada170bcec2e72f0e1f3954547f73

Targets

- Target
  
  8e1ba7bbfabb05d14b02c9f0ccf392c90162549e08b965f329743306b55e5d3e
- Size
  
  371KB
- MD5
  
  32727299573206a20dfa94e7450da5a3
- SHA1
  
  a9ca244d870c80c76d563d5521839e6857303cf0
- SHA256
  
  8e1ba7bbfabb05d14b02c9f0ccf392c90162549e08b965f329743306b55e5d3e
- SHA512
  
  f82acdda7ce8a2d12e7c901ebcfad39f2f88de1b90776be503427f1969b543127e3e0f9d2ad195dc98cf5347774a99c89f446cead1cc5f8bd8b638280f56f65f
- SSDEEP
  
  6144:OCXITG+urF+W2/cH8J6yr/bAxgPLrk1sx5b7ITsqXigaXwVfZ:OCXITDDWmx6BOj8O17R
Score

10^/10

redline 1 discovery infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
- Redline family
  redline
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

redline1discoveryinfostealer

behavioral2

redline1discoveryinfostealer

© 2018-2024

Terms | Privacy