redline | 7b049ebf3273cb47aaca7d9b340d44e0161008ab3613abf033b25fe1ef29173d | Triage

Submit
Reports

Overview

overview

Static

static

3

JaffaCakes...71.exe

windows7-x64

JaffaCakes...71.exe

windows10-2004-x64

Sharing

General

Target

JaffaCakes118_85ce29b3b3d67043df315e6cf07f5171
Size

389KB
Sample

250108-crcsvazlfv
MD5

85ce29b3b3d67043df315e6cf07f5171
SHA1

e1ee8f8d69895afb2998ae38ea2e6de83e223bd2
SHA256

7b049ebf3273cb47aaca7d9b340d44e0161008ab3613abf033b25fe1ef29173d
SHA512

ca62c3516e241747eb9affe5123ec8875d686fd6267db5e77715d7c0c45c0eec75e468f00de5df90b8e4a5cabf2cc3c73de1d9d7f224c0e2d7a604f536aed744
SSDEEP

12288:FUQlVRJpCBG505xdS3u5AnQBOjAPOcMcdDE3W8n:FJhJbU

Score

10^/10

redline technogamerzmodmenuinstallerv2.12 discovery infostealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

JaffaCakes118_85ce29b3b3d67043df315e6cf07f5171.exe

Resource

win7-20240903-en

redline technogamerzmodmenuinstallerv2.12 discovery infostealer

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

JaffaCakes118_85ce29b3b3d67043df315e6cf07f5171.exe

Resource

win10v2004-20241007-en

redline technogamerzmodmenuinstallerv2.12 discovery infostealer

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Extracted

Family

redline

Botnet

TechnoGamerzModMenuInstallerV2.12

C2

185.215.113.55:36801

Attributes

auth_value
5c57f1eb36bb351b7007ba406bba7afc

Targets

- Target
  
  JaffaCakes118_85ce29b3b3d67043df315e6cf07f5171
- Size
  
  389KB
- MD5
  
  85ce29b3b3d67043df315e6cf07f5171
- SHA1
  
  e1ee8f8d69895afb2998ae38ea2e6de83e223bd2
- SHA256
  
  7b049ebf3273cb47aaca7d9b340d44e0161008ab3613abf033b25fe1ef29173d
- SHA512
  
  ca62c3516e241747eb9affe5123ec8875d686fd6267db5e77715d7c0c45c0eec75e468f00de5df90b8e4a5cabf2cc3c73de1d9d7f224c0e2d7a604f536aed744
- SSDEEP
  
  12288:FUQlVRJpCBG505xdS3u5AnQBOjAPOcMcdDE3W8n:FJhJbU
Score

10^/10

redline technogamerzmodmenuinstallerv2.12 discovery infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
- Redline family
  redline
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

redlinetechnogamerzmodmenuinstallerv2.12discoveryinfostealer

behavioral2

redlinetechnogamerzmodmenuinstallerv2.12discoveryinfostealer

© 2018-2025

Terms | Privacy