redline | d4f13bfbf726b883d94ff29a75382e7abf8e751373572c4ba427e45407d9d75c | Triage

Submit
Reports

Overview

overview

Static

static

7

d4f13bfbf7...cN.exe

windows7-x64

d4f13bfbf7...cN.exe

windows10-2004-x64

Sharing

General

Target

d4f13bfbf726b883d94ff29a75382e7abf8e751373572c4ba427e45407d9d75cN.exe
Size

4.2MB
Sample

241125-dpmqpsvqg1
MD5

73326ee382121f5a8bdbcc37e3c8b940
SHA1

08cd8757c1f2c0c3354ecc0807ab9aca793515a9
SHA256

d4f13bfbf726b883d94ff29a75382e7abf8e751373572c4ba427e45407d9d75c
SHA512

59738756be3776af55712af32717aab80c571844bc6676e23a656eaf88ea142a066316168c95ac4fb7050b9c936d3183d6f6ef857271dee527bc26d661db5699
SSDEEP

98304:UFVySWe/aWDDOkHPtwsLw1Dl7JGY3K8ujThIOMsEXvsx6bCFFAn:ULySWePDDOkvXLw7cWejThIOMjXv9OK

Score

10^/10

redline @sc4lly1337 aspackv2 discovery infostealer

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

d4f13bfbf726b883d94ff29a75382e7abf8e751373572c4ba427e45407d9d75cN.exe

Resource

win7-20240903-en

redline @sc4lly1337 discovery infostealer

windows7-x64

7 signatures

120 seconds

Behavioral task

behavioral2

Sample

d4f13bfbf726b883d94ff29a75382e7abf8e751373572c4ba427e45407d9d75cN.exe

Resource

win10v2004-20241007-en

redline @sc4lly1337 discovery infostealer

windows10-2004-x64

8 signatures

120 seconds

Malware Config

Extracted

Family

redline

Botnet

@sc4lly1337

C2

185.215.113.83:60722

Attributes

auth_value
cb96f2ad461ba2dc951cb5a868225e22

Targets

- Target
  
  d4f13bfbf726b883d94ff29a75382e7abf8e751373572c4ba427e45407d9d75cN.exe
- Size
  
  4.2MB
- MD5
  
  73326ee382121f5a8bdbcc37e3c8b940
- SHA1
  
  08cd8757c1f2c0c3354ecc0807ab9aca793515a9
- SHA256
  
  d4f13bfbf726b883d94ff29a75382e7abf8e751373572c4ba427e45407d9d75c
- SHA512
  
  59738756be3776af55712af32717aab80c571844bc6676e23a656eaf88ea142a066316168c95ac4fb7050b9c936d3183d6f6ef857271dee527bc26d661db5699
- SSDEEP
  
  98304:UFVySWe/aWDDOkHPtwsLw1Dl7JGY3K8ujThIOMsEXvsx6bCFFAn:ULySWePDDOkvXLw7cWejThIOMjXv9OK
Score

10^/10

redline @sc4lly1337 discovery infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
- Redline family
  redline
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

redline@sc4lly1337discoveryinfostealer

behavioral2

redline@sc4lly1337discoveryinfostealer

© 2018-2025

Terms | Privacy