redline | 6397854b223dccac6d7900d35d0641621d5bf58e4a7555126975b7beef790575 | Triage

Sharing

General

Target

6397854b223dccac6d7900d35d0641621d5bf58e4a7555126975b7beef790575.exe
Size

176KB
Sample

241119-tkknjsyeqj
MD5

825f29cde430ec6d050d1f9e126d0810
SHA1

fcc570f823939a57324dc265ace25c12394f67d9
SHA256

6397854b223dccac6d7900d35d0641621d5bf58e4a7555126975b7beef790575
SHA512

eb68b4762b78f996d06a2d18669cb6a1b24b655dcf63252ca3e9752eb739ace2c6c54456a3a71d6878c459644d8e2b1f4cd95d3ea6081313389c7517cfee94f3
SSDEEP

3072:OxqZWXragQx+/Z5reN5FchA/xNn2pU9f2MKTV/wi4lr55R9TxlnsPsUw0jOuw+cK:0qZWZ5gch5

Score

10^/10

redline forma discovery infostealer

Malware Config

Extracted

Family

redline

Botnet

forma

C2

193.233.20.24:4123

Attributes

auth_value
50b8e065d7cb1e9e30786f7a370368f9

Targets

- Target
  
  6397854b223dccac6d7900d35d0641621d5bf58e4a7555126975b7beef790575.exe
- Size
  
  176KB
- MD5
  
  825f29cde430ec6d050d1f9e126d0810
- SHA1
  
  fcc570f823939a57324dc265ace25c12394f67d9
- SHA256
  
  6397854b223dccac6d7900d35d0641621d5bf58e4a7555126975b7beef790575
- SHA512
  
  eb68b4762b78f996d06a2d18669cb6a1b24b655dcf63252ca3e9752eb739ace2c6c54456a3a71d6878c459644d8e2b1f4cd95d3ea6081313389c7517cfee94f3
- SSDEEP
  
  3072:OxqZWXragQx+/Z5reN5FchA/xNn2pU9f2MKTV/wi4lr55R9TxlnsPsUw0jOuw+cK:0qZWZ5gch5
Score

10^/10

redline forma discovery infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
- Redline family
  redline
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

redlineformadiscoveryinfostealer

behavioral2

redlineformadiscoveryinfostealer