redline | 825c4fcac88cddfa3f765a67ae297ae485d045ae7e3d2ffe2521fe8ca10f5478 | Triage

Submit
Reports

Overview

overview

Static

static

3

825c4fcac8...78.exe

windows7-x64

825c4fcac8...78.exe

windows10-2004-x64

Sharing

General

Target

825c4fcac88cddfa3f765a67ae297ae485d045ae7e3d2ffe2521fe8ca10f5478.exe
Size

441KB
Sample

241122-m3rq9ayrdv
MD5

5481dbb8d5b84f140816c8d2e0790e29
SHA1

6bbee7b0684be92f285e5d3088108ddac1c6825c
SHA256

825c4fcac88cddfa3f765a67ae297ae485d045ae7e3d2ffe2521fe8ca10f5478
SHA512

bd7c08f986311b876647e207a5febcd4466010d00e6c1dea16a2db41492d416adf963a27a80ff6684cedac82d5a922dbfae1412c743707609f787d4edff15053
SSDEEP

12288:K9/luXNmTRS3sKRAZlXOEFmqXH8vPtq3wVA7+euH:K7udmlSzRCXcvP03wW0H

Score

10^/10

redline paladin discovery infostealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

825c4fcac88cddfa3f765a67ae297ae485d045ae7e3d2ffe2521fe8ca10f5478.exe

Resource

win7-20240729-en

redline paladin discovery infostealer

windows7-x64

4 signatures

120 seconds

Behavioral task

behavioral2

Sample

825c4fcac88cddfa3f765a67ae297ae485d045ae7e3d2ffe2521fe8ca10f5478.exe

Resource

win10v2004-20241007-en

redline paladin discovery infostealer

windows10-2004-x64

4 signatures

120 seconds

Malware Config

Extracted

Family

redline

Botnet

paladin

C2

193.150.103.37:29118

Attributes

auth_value
f27db372188045eefdf974196ead3dae

Targets

- Target
  
  825c4fcac88cddfa3f765a67ae297ae485d045ae7e3d2ffe2521fe8ca10f5478.exe
- Size
  
  441KB
- MD5
  
  5481dbb8d5b84f140816c8d2e0790e29
- SHA1
  
  6bbee7b0684be92f285e5d3088108ddac1c6825c
- SHA256
  
  825c4fcac88cddfa3f765a67ae297ae485d045ae7e3d2ffe2521fe8ca10f5478
- SHA512
  
  bd7c08f986311b876647e207a5febcd4466010d00e6c1dea16a2db41492d416adf963a27a80ff6684cedac82d5a922dbfae1412c743707609f787d4edff15053
- SSDEEP
  
  12288:K9/luXNmTRS3sKRAZlXOEFmqXH8vPtq3wVA7+euH:K7udmlSzRCXcvP03wW0H
Score

10^/10

redline paladin discovery infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
- Redline family
  redline
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

redlinepaladindiscoveryinfostealer

behavioral2

redlinepaladindiscoveryinfostealer

© 2018-2024

Terms | Privacy