redline | 149cf2cb1e68fad5a9153cdb95abf2816270126c9f6f51b720b15a5bb6812656 | Triage

Submit
Reports

Overview

overview

Static

static

3

149cf2cb1e...56.exe

windows7-x64

149cf2cb1e...56.exe

windows10-2004-x64

Sharing

General

Target

149cf2cb1e68fad5a9153cdb95abf2816270126c9f6f51b720b15a5bb6812656.exe
Size

855KB
Sample

241122-lnmcjsykes
MD5

6e85720374ce57edf27d7c6337fac3c5
SHA1

85e44dad1c1b96cc545b445a2e92de7ffd92f4e4
SHA256

149cf2cb1e68fad5a9153cdb95abf2816270126c9f6f51b720b15a5bb6812656
SHA512

58ee7a86b8141ceba142e533f35bc62702ce2627a8083598fd31ef38f4bbf00ab255fd4327f19fb682d8a9031df3ec815519fd2e731098616ec5e94adfc1ce55
SSDEEP

12288:kwu0gA4e6F9c8TFY5BcQ5wUal7Ts+rHWqxETUnBupICs6Ttxy0b7igdt4fJZE:k+gAp+FYYQKUM7JbI97ign4RZE

Score

10^/10

redline @iucky_man discovery infostealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

149cf2cb1e68fad5a9153cdb95abf2816270126c9f6f51b720b15a5bb6812656.exe

Resource

win7-20240708-en

redline @iucky_man discovery infostealer

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

149cf2cb1e68fad5a9153cdb95abf2816270126c9f6f51b720b15a5bb6812656.exe

Resource

win10v2004-20241007-en

redline @iucky_man discovery infostealer

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Extracted

Family

redline

Botnet

@Iucky_man

C2

92.119.113.189:21746

Attributes

auth_value
de713911efa818890ac36085c9a0fc58

Targets

- Target
  
  149cf2cb1e68fad5a9153cdb95abf2816270126c9f6f51b720b15a5bb6812656.exe
- Size
  
  855KB
- MD5
  
  6e85720374ce57edf27d7c6337fac3c5
- SHA1
  
  85e44dad1c1b96cc545b445a2e92de7ffd92f4e4
- SHA256
  
  149cf2cb1e68fad5a9153cdb95abf2816270126c9f6f51b720b15a5bb6812656
- SHA512
  
  58ee7a86b8141ceba142e533f35bc62702ce2627a8083598fd31ef38f4bbf00ab255fd4327f19fb682d8a9031df3ec815519fd2e731098616ec5e94adfc1ce55
- SSDEEP
  
  12288:kwu0gA4e6F9c8TFY5BcQ5wUal7Ts+rHWqxETUnBupICs6Ttxy0b7igdt4fJZE:k+gAp+FYYQKUM7JbI97ign4RZE
Score

10^/10

redline @iucky_man discovery infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
- Redline family
  redline
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

redline@iucky_mandiscoveryinfostealer

behavioral2

redline@iucky_mandiscoveryinfostealer

© 2018-2024

Terms | Privacy