redline | a621021b79d5bb7959af78474ee9f9b25ec48b528dafe79ee669c6de2fdef2e8 | Triage

Submit
Reports

Overview

overview

Static

static

3

a621021b79...8N.exe

windows7-x64

a621021b79...8N.exe

windows10-2004-x64

Sharing

General

Target

a621021b79d5bb7959af78474ee9f9b25ec48b528dafe79ee669c6de2fdef2e8N.exe
Size

296KB
Sample

241113-ge685szmfk
MD5

2fdfc180c1a219158be59036c13dedf0
SHA1

bf8c98b5d8dcb8409fe8443593f18e5fd6c5fcb6
SHA256

a621021b79d5bb7959af78474ee9f9b25ec48b528dafe79ee669c6de2fdef2e8
SHA512

35f7dbd7f0dfd2452e8baab12b515832628f646f6e1fb3a88a5a30db523f339b0610a93312a097ea408b13396638398b9f7928e12a33b84316b9dea202346dde
SSDEEP

6144:cqFYxe8eA24UWODEvlynmM+5dJuseKWI2x8O:cqa5/ZU9EvlyA2aWv

Score

10^/10

redline mango discovery infostealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

a621021b79d5bb7959af78474ee9f9b25ec48b528dafe79ee669c6de2fdef2e8N.exe

Resource

win7-20240903-en

redline mango discovery infostealer

windows7-x64

5 signatures

120 seconds

Behavioral task

behavioral2

Sample

a621021b79d5bb7959af78474ee9f9b25ec48b528dafe79ee669c6de2fdef2e8N.exe

Resource

win10v2004-20241007-en

redline mango discovery infostealer

windows10-2004-x64

5 signatures

120 seconds

Malware Config

Extracted

Family

redline

Botnet

mango

C2

193.233.20.28:4125

Attributes

auth_value
ecf79d7f5227d998a3501c972d915d23

Targets

- Target
  
  a621021b79d5bb7959af78474ee9f9b25ec48b528dafe79ee669c6de2fdef2e8N.exe
- Size
  
  296KB
- MD5
  
  2fdfc180c1a219158be59036c13dedf0
- SHA1
  
  bf8c98b5d8dcb8409fe8443593f18e5fd6c5fcb6
- SHA256
  
  a621021b79d5bb7959af78474ee9f9b25ec48b528dafe79ee669c6de2fdef2e8
- SHA512
  
  35f7dbd7f0dfd2452e8baab12b515832628f646f6e1fb3a88a5a30db523f339b0610a93312a097ea408b13396638398b9f7928e12a33b84316b9dea202346dde
- SSDEEP
  
  6144:cqFYxe8eA24UWODEvlynmM+5dJuseKWI2x8O:cqa5/ZU9EvlyA2aWv
Score

10^/10

redline mango discovery infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
- Redline family
  redline
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

redlinemangodiscoveryinfostealer

behavioral2

redlinemangodiscoveryinfostealer

© 2018-2024

Terms | Privacy