redline | b8ed3cbda2f75382a5ab54c4c8314a45410649ec9b7e6e54707d9930eedd5a21 | Triage

Sharing

General

Target

build.exe
Size

300KB
Sample

250108-bxq2zszncq
MD5

efe6a2069d716ef206f487649860d41d
SHA1

6109541c9f82801e038b8fdbb044e4c666c9f954
SHA256

b8ed3cbda2f75382a5ab54c4c8314a45410649ec9b7e6e54707d9930eedd5a21
SHA512

b58d60c0d00819d30ba57a877beb90815a0ae19305c4d4ddbe4fae904dbe92fedca07b1d972e14837d9607f03570f5c61a9822994f13c6dea07f31b535e6916c
SSDEEP

3072:ScZqf7D34jp/0+mAMkywS1Q0gvxXB1fA0PuTVAtkxz13RkeqiOL2bBOA:ScZqf7DIdn0yFXB1fA0GTV8kLML

Score

10^/10

redline love discovery infostealer

Malware Config

Extracted

Family

redline

Botnet

love

C2

127.0.0.1:1912

Targets

- Target
  
  build.exe
- Size
  
  300KB
- MD5
  
  efe6a2069d716ef206f487649860d41d
- SHA1
  
  6109541c9f82801e038b8fdbb044e4c666c9f954
- SHA256
  
  b8ed3cbda2f75382a5ab54c4c8314a45410649ec9b7e6e54707d9930eedd5a21
- SHA512
  
  b58d60c0d00819d30ba57a877beb90815a0ae19305c4d4ddbe4fae904dbe92fedca07b1d972e14837d9607f03570f5c61a9822994f13c6dea07f31b535e6916c
- SSDEEP
  
  3072:ScZqf7D34jp/0+mAMkywS1Q0gvxXB1fA0PuTVAtkxz13RkeqiOL2bBOA:ScZqf7DIdn0yFXB1fA0GTV8kLML
Score

10^/10

redline love discovery infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
- Redline family
  redline
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

redlinelovediscoveryinfostealer

behavioral2

redlinelovediscoveryinfostealer