redline | 5c853432a95d71b4cb072de073924ff78021ece2621af8d247a66d6b321ae3c4 | Triage

Sharing

General

Target

5c853432a95d71b4cb072de073924ff78021ece2621af8d247a66d6b321ae3c4
Size

169KB
Sample

241112-2fm7wawkfl
MD5

70694314526ae0a996975083031d60e8
SHA1

22549588a925a8776f96b93d8c6c2c7ea493e7c3
SHA256

5c853432a95d71b4cb072de073924ff78021ece2621af8d247a66d6b321ae3c4
SHA512

e7e84312f167f13be20b0a9f866987bcac8c76b8a981829af950ccea06cb24f1fb02d0bae87ef9cc37d5dec434f24fa568287ae7bda41e686857aa3a4187c297
SSDEEP

1536:zR1B8iqlVZRGWcAL4rMeV0HB3PE3+GnTGqVkbutpPljdzXgPw83wYk58e8hp:9n8U0Z/EOVqV8OVdzXgPwL8e8hp

Score

10^/10

redline most discovery infostealer

Malware Config

Extracted

Family

redline

Botnet

most

C2

185.161.248.73:4164

Attributes

auth_value
7da4dfa153f2919e617aa016f7c36008

Targets

- Target
  
  5c853432a95d71b4cb072de073924ff78021ece2621af8d247a66d6b321ae3c4
- Size
  
  169KB
- MD5
  
  70694314526ae0a996975083031d60e8
- SHA1
  
  22549588a925a8776f96b93d8c6c2c7ea493e7c3
- SHA256
  
  5c853432a95d71b4cb072de073924ff78021ece2621af8d247a66d6b321ae3c4
- SHA512
  
  e7e84312f167f13be20b0a9f866987bcac8c76b8a981829af950ccea06cb24f1fb02d0bae87ef9cc37d5dec434f24fa568287ae7bda41e686857aa3a4187c297
- SSDEEP
  
  1536:zR1B8iqlVZRGWcAL4rMeV0HB3PE3+GnTGqVkbutpPljdzXgPw83wYk58e8hp:9n8U0Z/EOVqV8OVdzXgPwL8e8hp
Score

10^/10

redline most discovery infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
- Redline family
  redline
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

redlinemostdiscoveryinfostealer

behavioral2

redlinemostdiscoveryinfostealer