redline | a709199cb2df04bca70809381d483593590bcd38dbfa0a143fcd610c6c64ab52 | Triage

Submit
Reports

Overview

overview

Static

static

1

JaffaCakes...52.exe

windows7-x64

JaffaCakes...52.exe

windows10-2004-x64

Sharing

General

Target

JaffaCakes118_a709199cb2df04bca70809381d483593590bcd38dbfa0a143fcd610c6c64ab52
Size

723.6MB
Sample

241225-rde4davkfz
MD5

7ddc56f2f06776d814b96066f7798241
SHA1

41040f7d0a4e48ad8358abeb0ae43296ef8204d0
SHA256

a709199cb2df04bca70809381d483593590bcd38dbfa0a143fcd610c6c64ab52
SHA512

724ec552e7ea342e83aee4fd07de8d4a5b2a215076facbf388921727b40ae40ab6bc8d86cfc0847a65614aa43f88458c7f931e881ab5085b19793483d1a4de42
SSDEEP

3072:41Qm1qPIb6zVf3ytd8xR9hebpTUz16y/1hJgNVTLHNjWEGUOmGw5:dmZikMR9hexU9+HNjWzU/p

Score

10^/10

redline 5769453016_99 discovery infostealer

Static task

static1

Behavioral task

behavioral1

Sample

JaffaCakes118_a709199cb2df04bca70809381d483593590bcd38dbfa0a143fcd610c6c64ab52.exe

Resource

win7-20241010-en

redline 5769453016_99 discovery infostealer

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

JaffaCakes118_a709199cb2df04bca70809381d483593590bcd38dbfa0a143fcd610c6c64ab52.exe

Resource

win10v2004-20241007-en

redline 5769453016_99 discovery infostealer

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Extracted

Family

redline

Botnet

5769453016_99

C2

dumuzid.top:28786

Attributes

auth_value
e901f0985f613b7b4e8ebb103a2e39b4

Targets

- Target
  
  JaffaCakes118_a709199cb2df04bca70809381d483593590bcd38dbfa0a143fcd610c6c64ab52
- Size
  
  723.6MB
- MD5
  
  7ddc56f2f06776d814b96066f7798241
- SHA1
  
  41040f7d0a4e48ad8358abeb0ae43296ef8204d0
- SHA256
  
  a709199cb2df04bca70809381d483593590bcd38dbfa0a143fcd610c6c64ab52
- SHA512
  
  724ec552e7ea342e83aee4fd07de8d4a5b2a215076facbf388921727b40ae40ab6bc8d86cfc0847a65614aa43f88458c7f931e881ab5085b19793483d1a4de42
- SSDEEP
  
  3072:41Qm1qPIb6zVf3ytd8xR9hebpTUz16y/1hJgNVTLHNjWEGUOmGw5:dmZikMR9hexU9+HNjWzU/p
Score

10^/10

redline 5769453016_99 discovery infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
- Redline family
  redline
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

redline5769453016_99discoveryinfostealer

behavioral2

redline5769453016_99discoveryinfostealer

© 2018-2025

Terms | Privacy