redline | a68371dab98b32a415c9a774cb972b5439a313946f06283917e05ecf83170391 | Triage

Submit
Reports

Overview

overview

Static

static

3

JaffaCakes...14.exe

windows7-x64

JaffaCakes...14.exe

windows10-2004-x64

Sharing

General

Target

JaffaCakes118_47502c4fbfee81ffb2cc763b2c3a7014
Size

832KB
Sample

250107-cg52ms1lbn
MD5

47502c4fbfee81ffb2cc763b2c3a7014
SHA1

d26041802a760eb3c2d6504591573d186e77b2a8
SHA256

a68371dab98b32a415c9a774cb972b5439a313946f06283917e05ecf83170391
SHA512

7dedf8b6a4460ea7bbe0c95b0fcaa64e9c407bc7c195b80bb4ea9cc4151e1290ab23143dc2d862c6d94d5f1a2a8b7a1c562b93f5b7ee7c23144f32e1d1108a95
SSDEEP

12288:3aq8GgDyMO9nXgab/b8ZuAcY0V5gmdLPdXbDmehoC16OLhTHlGNmWjP9:3aq8pGHnQafAoPUyJ6LNmi1

Score

10^/10

redline @alternativshikk discovery infostealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

JaffaCakes118_47502c4fbfee81ffb2cc763b2c3a7014.exe

Resource

win7-20240903-en

redline @alternativshikk discovery infostealer

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

JaffaCakes118_47502c4fbfee81ffb2cc763b2c3a7014.exe

Resource

win10v2004-20241007-en

redline @alternativshikk discovery infostealer

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Extracted

Family

redline

Botnet

@alternativshikk

C2

5.188.118.163:80

Attributes

auth_value
9bde7608ef33d6cbd8c01687cdd53196

Targets

- Target
  
  JaffaCakes118_47502c4fbfee81ffb2cc763b2c3a7014
- Size
  
  832KB
- MD5
  
  47502c4fbfee81ffb2cc763b2c3a7014
- SHA1
  
  d26041802a760eb3c2d6504591573d186e77b2a8
- SHA256
  
  a68371dab98b32a415c9a774cb972b5439a313946f06283917e05ecf83170391
- SHA512
  
  7dedf8b6a4460ea7bbe0c95b0fcaa64e9c407bc7c195b80bb4ea9cc4151e1290ab23143dc2d862c6d94d5f1a2a8b7a1c562b93f5b7ee7c23144f32e1d1108a95
- SSDEEP
  
  12288:3aq8GgDyMO9nXgab/b8ZuAcY0V5gmdLPdXbDmehoC16OLhTHlGNmWjP9:3aq8pGHnQafAoPUyJ6LNmi1
Score

10^/10

redline @alternativshikk discovery infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
- Redline family
  redline
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

redline@alternativshikkdiscoveryinfostealer

behavioral2

redline@alternativshikkdiscoveryinfostealer

© 2018-2025

Terms | Privacy