redline | 562364d17373a409625cb9b98dd231cfde797cd56d912c26f59c91ea954cda9a | Triage

Submit
Reports

Overview

overview

Static

static

3

562364d173...aN.exe

windows7-x64

562364d173...aN.exe

windows10-2004-x64

Sharing

General

Target

562364d17373a409625cb9b98dd231cfde797cd56d912c26f59c91ea954cda9aN.exe
Size

290KB
Sample

241113-c9f8zstrft
MD5

682db01465659ccedd6d9e865bc07430
SHA1

83aef07a91455b6ae338ca1003a6e47c5ce78851
SHA256

562364d17373a409625cb9b98dd231cfde797cd56d912c26f59c91ea954cda9a
SHA512

d399e4a6ad3d4f61fab46eef3a5f4d0f673c9eb5bdf5dbb5796e050df10b2836db5bf582c08a8afc32defbdd621d20cf5b0008f17862842e515cdb57afa4d5c9
SSDEEP

3072:8kPRHZ/nIozrk5QcVM6AdlGXcuHFydrqljJpndfds2E8ckGj27sp6t4tsslb0kOq:xR57CyrlGXFcAnpchxrTB0kO9ddM

Score

10^/10

redline gena discovery infostealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

562364d17373a409625cb9b98dd231cfde797cd56d912c26f59c91ea954cda9aN.exe

Resource

win7-20240708-en

redline gena discovery infostealer

windows7-x64

5 signatures

120 seconds

Behavioral task

behavioral2

Sample

562364d17373a409625cb9b98dd231cfde797cd56d912c26f59c91ea954cda9aN.exe

Resource

win10v2004-20241007-en

redline gena discovery infostealer

windows10-2004-x64

5 signatures

120 seconds

Malware Config

Extracted

Family

redline

Botnet

gena

C2

193.233.20.30:4125

Attributes

auth_value
93c20961cb6b06b2d5781c212db6201e

Targets

- Target
  
  562364d17373a409625cb9b98dd231cfde797cd56d912c26f59c91ea954cda9aN.exe
- Size
  
  290KB
- MD5
  
  682db01465659ccedd6d9e865bc07430
- SHA1
  
  83aef07a91455b6ae338ca1003a6e47c5ce78851
- SHA256
  
  562364d17373a409625cb9b98dd231cfde797cd56d912c26f59c91ea954cda9a
- SHA512
  
  d399e4a6ad3d4f61fab46eef3a5f4d0f673c9eb5bdf5dbb5796e050df10b2836db5bf582c08a8afc32defbdd621d20cf5b0008f17862842e515cdb57afa4d5c9
- SSDEEP
  
  3072:8kPRHZ/nIozrk5QcVM6AdlGXcuHFydrqljJpndfds2E8ckGj27sp6t4tsslb0kOq:xR57CyrlGXFcAnpchxrTB0kO9ddM
Score

10^/10

redline gena discovery infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
- Redline family
  redline
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

redlinegenadiscoveryinfostealer

behavioral2

redlinegenadiscoveryinfostealer

© 2018-2024

Terms | Privacy