redline | 0ea51e8033ced0955a6f23674b0e0948343b1ff3bbc4db990159c8974d38c9d3 | Triage

Submit
Reports

Overview

overview

Static

static

3

0ea51e8033...d3.exe

windows7-x64

0ea51e8033...d3.exe

windows10-2004-x64

Sharing

General

Target

0ea51e8033ced0955a6f23674b0e0948343b1ff3bbc4db990159c8974d38c9d3.exe
Size

284KB
Sample

241119-b93xbazbqj
MD5

cef5f4f9be3b3a997ce035db84ea3ed5
SHA1

981e5ccf5755a29063bef0c79d3ed79a434a92a8
SHA256

0ea51e8033ced0955a6f23674b0e0948343b1ff3bbc4db990159c8974d38c9d3
SHA512

53d996c47626010d7123bb6628c93b326e3a51b675da274b5d4dc40c60b11434c62c7680160bb81aadb4d94240a00d1833c1efeba7158a091e263cbda9207d81
SSDEEP

6144:z6H8Rz6dbZC6QOaGqGwVPPfA4zu0b7fPQ2:z6H8FnpMhwVPS0Pf9

Score

10^/10

redline mango discovery infostealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

0ea51e8033ced0955a6f23674b0e0948343b1ff3bbc4db990159c8974d38c9d3.exe

Resource

win7-20240903-en

redline mango discovery infostealer

windows7-x64

5 signatures

120 seconds

Behavioral task

behavioral2

Sample

0ea51e8033ced0955a6f23674b0e0948343b1ff3bbc4db990159c8974d38c9d3.exe

Resource

win10v2004-20241007-en

redline mango discovery infostealer

windows10-2004-x64

5 signatures

120 seconds

Malware Config

Extracted

Family

redline

Botnet

mango

C2

193.233.20.28:4125

Attributes

auth_value
ecf79d7f5227d998a3501c972d915d23

Targets

- Target
  
  0ea51e8033ced0955a6f23674b0e0948343b1ff3bbc4db990159c8974d38c9d3.exe
- Size
  
  284KB
- MD5
  
  cef5f4f9be3b3a997ce035db84ea3ed5
- SHA1
  
  981e5ccf5755a29063bef0c79d3ed79a434a92a8
- SHA256
  
  0ea51e8033ced0955a6f23674b0e0948343b1ff3bbc4db990159c8974d38c9d3
- SHA512
  
  53d996c47626010d7123bb6628c93b326e3a51b675da274b5d4dc40c60b11434c62c7680160bb81aadb4d94240a00d1833c1efeba7158a091e263cbda9207d81
- SSDEEP
  
  6144:z6H8Rz6dbZC6QOaGqGwVPPfA4zu0b7fPQ2:z6H8FnpMhwVPS0Pf9
Score

10^/10

redline mango discovery infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
- Redline family
  redline
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

redlinemangodiscoveryinfostealer

behavioral2

redlinemangodiscoveryinfostealer

© 2018-2024

Terms | Privacy