redline | a9f8debc2002fdcd4473b747d74503f8359e6cc4123148c03554b0f4a04edf68 | Triage

Sharing

General

Target

a9f8debc2002fdcd4473b747d74503f8359e6cc4123148c03554b0f4a04edf68.exe
Size

844KB
Sample

241113-ljcmjszale
MD5

f95c6079d439ede13d47bcf7562b98c8
SHA1

d1a1095d04a208414fa8f8245d986d7e588b5e78
SHA256

a9f8debc2002fdcd4473b747d74503f8359e6cc4123148c03554b0f4a04edf68
SHA512

9e3abe6cb6ff0cd6c847efc139d97f27046fb0aef3344aa8046753f90d36b8562c006ef876b2e4a76c9c593dc0bb71f5e60dfa801006bb41c81167cb65325c24
SSDEEP

24576:ty2kRd/Ta9wxL5dbvxefrGlfUtqahpuAPwV:I2sNzx9dvxefKfER36

Score

10^/10

redline most discovery infostealer persistence

Malware Config

Extracted

Family

redline

Botnet

most

C2

185.161.248.73:4164

Attributes

auth_value
7da4dfa153f2919e617aa016f7c36008

Targets

- Target
  
  a9f8debc2002fdcd4473b747d74503f8359e6cc4123148c03554b0f4a04edf68.exe
- Size
  
  844KB
- MD5
  
  f95c6079d439ede13d47bcf7562b98c8
- SHA1
  
  d1a1095d04a208414fa8f8245d986d7e588b5e78
- SHA256
  
  a9f8debc2002fdcd4473b747d74503f8359e6cc4123148c03554b0f4a04edf68
- SHA512
  
  9e3abe6cb6ff0cd6c847efc139d97f27046fb0aef3344aa8046753f90d36b8562c006ef876b2e4a76c9c593dc0bb71f5e60dfa801006bb41c81167cb65325c24
- SSDEEP
  
  24576:ty2kRd/Ta9wxL5dbvxefrGlfUtqahpuAPwV:I2sNzx9dvxefKfER36
Score

10^/10

redline most discovery infostealer persistence
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
- Redline family
  redline
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

redlinemostdiscoveryinfostealerpersistence