redline | 76b36353044840a1b2ef1968bcff65110fd66f182ad3781d741629fee6c8b0e7 | Triage

Submit
Reports

Overview

overview

Static

static

3

JaffaCakes...8d.exe

windows7-x64

JaffaCakes...8d.exe

windows10-2004-x64

Sharing

General

Target

JaffaCakes118_26e36a8e3b5912a36aaec9c8b96f3e8d
Size

4.6MB
Sample

250106-qz7j3sxqdx
MD5

26e36a8e3b5912a36aaec9c8b96f3e8d
SHA1

befcd0f4999b0c2a551a47a8a0d772096f707a38
SHA256

76b36353044840a1b2ef1968bcff65110fd66f182ad3781d741629fee6c8b0e7
SHA512

3c4afe4d97144a718b2af3c51efe7f6fda0f08dbff3c848df0a1df5e6dc59903c71c4e5ecf70f860dc59ca43bcc659c6791172ae8028ef43b9dc75c91249ab89
SSDEEP

98304:RLF/IgwvIuL/DS3uFEo1IfVEk7UA9uP+s1dKFeo36D:hc/OQEo1G3h9uP+s/Kco36

Score

10^/10

redline fs discovery infostealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

JaffaCakes118_26e36a8e3b5912a36aaec9c8b96f3e8d.exe

Resource

win7-20240903-en

redline fs discovery infostealer

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

JaffaCakes118_26e36a8e3b5912a36aaec9c8b96f3e8d.exe

Resource

win10v2004-20241007-en

redline fs discovery infostealer

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Extracted

Family

redline

Botnet

fs

C2

185.255.133.25:18225

Attributes

auth_value
e6ae87b99bc187e67e3023b8ad515104

Targets

- Target
  
  JaffaCakes118_26e36a8e3b5912a36aaec9c8b96f3e8d
- Size
  
  4.6MB
- MD5
  
  26e36a8e3b5912a36aaec9c8b96f3e8d
- SHA1
  
  befcd0f4999b0c2a551a47a8a0d772096f707a38
- SHA256
  
  76b36353044840a1b2ef1968bcff65110fd66f182ad3781d741629fee6c8b0e7
- SHA512
  
  3c4afe4d97144a718b2af3c51efe7f6fda0f08dbff3c848df0a1df5e6dc59903c71c4e5ecf70f860dc59ca43bcc659c6791172ae8028ef43b9dc75c91249ab89
- SSDEEP
  
  98304:RLF/IgwvIuL/DS3uFEo1IfVEk7UA9uP+s1dKFeo36D:hc/OQEo1G3h9uP+s/Kco36
Score

10^/10

redline fs discovery infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
- Redline family
  redline
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

redlinefsdiscoveryinfostealer

behavioral2

redlinefsdiscoveryinfostealer

© 2018-2025

Terms | Privacy