redline | af24f49bf034b193fb610db476735d6bfa19ca38c66167934f21c6f6b182c351 | Triage

Submit
Reports

Overview

overview

Static

static

3

af24f49bf0...51.exe

windows7-x64

af24f49bf0...51.exe

windows10-2004-x64

Sharing

General

Target

af24f49bf034b193fb610db476735d6bfa19ca38c66167934f21c6f6b182c351.exe
Size

295KB
Sample

241112-gcqtdaweng
MD5

916baef36564f3f9c79f9db7573d668a
SHA1

cf8005513031cf1d9a1bf3f55eb605a89d275f6b
SHA256

af24f49bf034b193fb610db476735d6bfa19ca38c66167934f21c6f6b182c351
SHA512

b4bda956c6a44df5cb9e4e7e6b159e645e0d19307018ab6ae00d0f41db9454610d74d4b990d275fdfb95c67328318e99517ad30c454d596ce93d01869ce1e10b
SSDEEP

6144:+kNNOVkRVBx/10lkVzRrZ08k18+CJ+OSdl/sJ2sZ:VN0VkRbp1K+drVk18+CoFu2sZ

Score

10^/10

redline mango discovery infostealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

af24f49bf034b193fb610db476735d6bfa19ca38c66167934f21c6f6b182c351.exe

Resource

win7-20240903-en

redline mango discovery infostealer

windows7-x64

5 signatures

120 seconds

Behavioral task

behavioral2

Sample

af24f49bf034b193fb610db476735d6bfa19ca38c66167934f21c6f6b182c351.exe

Resource

win10v2004-20241007-en

redline mango discovery infostealer

windows10-2004-x64

5 signatures

120 seconds

Malware Config

Extracted

Family

redline

Botnet

mango

C2

193.233.20.28:4125

Attributes

auth_value
ecf79d7f5227d998a3501c972d915d23

Targets

- Target
  
  af24f49bf034b193fb610db476735d6bfa19ca38c66167934f21c6f6b182c351.exe
- Size
  
  295KB
- MD5
  
  916baef36564f3f9c79f9db7573d668a
- SHA1
  
  cf8005513031cf1d9a1bf3f55eb605a89d275f6b
- SHA256
  
  af24f49bf034b193fb610db476735d6bfa19ca38c66167934f21c6f6b182c351
- SHA512
  
  b4bda956c6a44df5cb9e4e7e6b159e645e0d19307018ab6ae00d0f41db9454610d74d4b990d275fdfb95c67328318e99517ad30c454d596ce93d01869ce1e10b
- SSDEEP
  
  6144:+kNNOVkRVBx/10lkVzRrZ08k18+CJ+OSdl/sJ2sZ:VN0VkRbp1K+drVk18+CoFu2sZ
Score

10^/10

redline mango discovery infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
- Redline family
  redline
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

redlinemangodiscoveryinfostealer

behavioral2

redlinemangodiscoveryinfostealer

© 2018-2024

Terms | Privacy