redline | 11e77d21c48fe22e3ae8757d06e665d051e1da30a026f80ac394daf6c0bccbd6 | Triage

Submit
Reports

Overview

overview

Static

static

1

JaffaCakes...f1.exe

windows7-x64

JaffaCakes...f1.exe

windows10-2004-x64

Sharing

General

Target

JaffaCakes118_31ab053da32c783f2b0e8284f20bf2f1
Size

516KB
Sample

250106-wdlclssqhx
MD5

31ab053da32c783f2b0e8284f20bf2f1
SHA1

b3ceb3a17b92d18a24622625220bfcec58a24d91
SHA256

11e77d21c48fe22e3ae8757d06e665d051e1da30a026f80ac394daf6c0bccbd6
SHA512

49c7b2150e3aa6185a0ed5963a719b6eec917237be604838b56dfbe9cafad3a94acec8a2127689a7996c2e7aa54bc082d7fbe70949c739df09a12f2c0b077677
SSDEEP

3072:nO8ccmPptXdaWA5hK7BnNhPsCa3C/SOW1RfKACUSr0IpI:nOXc6tkW0K1nnMC6nRfKACUa0Iy

Score

10^/10

redline discovery infostealer

Static task

static1

Behavioral task

behavioral1

Sample

JaffaCakes118_31ab053da32c783f2b0e8284f20bf2f1.exe

Resource

win7-20240903-en

redline discovery infostealer

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

JaffaCakes118_31ab053da32c783f2b0e8284f20bf2f1.exe

Resource

win10v2004-20241007-en

redline discovery infostealer

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Extracted

Family

redline

C2

141.94.188.138:46419

Attributes

auth_value
3f48b95855158031ae9e7dafcb203009

Targets

- Target
  
  JaffaCakes118_31ab053da32c783f2b0e8284f20bf2f1
- Size
  
  516KB
- MD5
  
  31ab053da32c783f2b0e8284f20bf2f1
- SHA1
  
  b3ceb3a17b92d18a24622625220bfcec58a24d91
- SHA256
  
  11e77d21c48fe22e3ae8757d06e665d051e1da30a026f80ac394daf6c0bccbd6
- SHA512
  
  49c7b2150e3aa6185a0ed5963a719b6eec917237be604838b56dfbe9cafad3a94acec8a2127689a7996c2e7aa54bc082d7fbe70949c739df09a12f2c0b077677
- SSDEEP
  
  3072:nO8ccmPptXdaWA5hK7BnNhPsCa3C/SOW1RfKACUSr0IpI:nOXc6tkW0K1nnMC6nRfKACUa0Iy
Score

10^/10

redline discovery infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
- Redline family
  redline
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

redlinediscoveryinfostealer

behavioral2

redlinediscoveryinfostealer

© 2018-2025

Terms | Privacy