redline | 07ef0d3dc2f500f80372d200209b3023316e443fe7df34f9370cc612db5a71aa | Triage

Submit
Reports

Overview

overview

Static

static

1

07ef0d3dc2...aa.exe

windows7-x64

07ef0d3dc2...aa.exe

windows10-2004-x64

Sharing

General

Target

07ef0d3dc2f500f80372d200209b3023316e443fe7df34f9370cc612db5a71aa
Size

3.5MB
Sample

241229-x5zvrawkd1
MD5

203f7b540a345cc65c1ad5d185354a3a
SHA1

3b436d75534f71221f1dc7081bd799f2a378dd79
SHA256

07ef0d3dc2f500f80372d200209b3023316e443fe7df34f9370cc612db5a71aa
SHA512

e1a882849ea5d697318d5baa4805c3905612ef97bf5797f02729c203752bd13b784e1a3ed6f54fe783404cefa0e6532ef5865567f1c306d4be765eee42cfa8ef
SSDEEP

98304:EYyujypWS7z9Ns7vek4bO6ldbRnP/9U6EbL4U:CXjsrOOEddX9UD8

Score

10^/10

redline discovery infostealer

Static task

static1

Behavioral task

behavioral1

Sample

07ef0d3dc2f500f80372d200209b3023316e443fe7df34f9370cc612db5a71aa.exe

Resource

win7-20241010-en

redline discovery infostealer

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

07ef0d3dc2f500f80372d200209b3023316e443fe7df34f9370cc612db5a71aa.exe

Resource

win10v2004-20241007-en

redline discovery infostealer

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Extracted

Family

redline

C2

5.206.227.11:63730

Attributes

auth_value
0d9bdac3eaf2ab8f3967464ab95109da

Targets

- Target
  
  07ef0d3dc2f500f80372d200209b3023316e443fe7df34f9370cc612db5a71aa
- Size
  
  3.5MB
- MD5
  
  203f7b540a345cc65c1ad5d185354a3a
- SHA1
  
  3b436d75534f71221f1dc7081bd799f2a378dd79
- SHA256
  
  07ef0d3dc2f500f80372d200209b3023316e443fe7df34f9370cc612db5a71aa
- SHA512
  
  e1a882849ea5d697318d5baa4805c3905612ef97bf5797f02729c203752bd13b784e1a3ed6f54fe783404cefa0e6532ef5865567f1c306d4be765eee42cfa8ef
- SSDEEP
  
  98304:EYyujypWS7z9Ns7vek4bO6ldbRnP/9U6EbL4U:CXjsrOOEddX9UD8
Score

10^/10

redline discovery infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
- Redline family
  redline
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

redlinediscoveryinfostealer

behavioral2

redlinediscoveryinfostealer

© 2018-2025

Terms | Privacy