redline | 29368445dec9cb20a4691e21b00aad96b6ebda61094b4fa19c330a851c966c22 | Triage

Submit
Reports

Overview

overview

Static

static

1

JaffaCakes...02.exe

windows7-x64

JaffaCakes...02.exe

windows10-2004-x64

Sharing

General

Target

JaffaCakes118_8f02247b1b0fd68e2b3f262aa2578f02
Size

518KB
Sample

250108-gknc8ayqgp
MD5

8f02247b1b0fd68e2b3f262aa2578f02
SHA1

8fae1793fd35608cc9fd615f34499ad871c14636
SHA256

29368445dec9cb20a4691e21b00aad96b6ebda61094b4fa19c330a851c966c22
SHA512

0dbb346eac0a4693fce873507c285313a52c647fe590456399616daccd10079c1bdbff69c17a3087aa472e609902fbe156fcbeaae0d6ce34188b4db225a04c27
SSDEEP

3072:22QO7oDuy0aJ5+ISDOnXDsHHZt0N8dAJ2yAGflgsQVpLH:22cuG5+IJAz0N82J2xAbQVpT

Score

10^/10

redline discovery infostealer

Static task

static1

Behavioral task

behavioral1

Sample

JaffaCakes118_8f02247b1b0fd68e2b3f262aa2578f02.exe

Resource

win7-20241010-en

redline discovery infostealer

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

JaffaCakes118_8f02247b1b0fd68e2b3f262aa2578f02.exe

Resource

win10v2004-20241007-en

redline discovery infostealer

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Extracted

Family

redline

C2

141.94.188.138:46419

Attributes

auth_value
3f48b95855158031ae9e7dafcb203009

Targets

- Target
  
  JaffaCakes118_8f02247b1b0fd68e2b3f262aa2578f02
- Size
  
  518KB
- MD5
  
  8f02247b1b0fd68e2b3f262aa2578f02
- SHA1
  
  8fae1793fd35608cc9fd615f34499ad871c14636
- SHA256
  
  29368445dec9cb20a4691e21b00aad96b6ebda61094b4fa19c330a851c966c22
- SHA512
  
  0dbb346eac0a4693fce873507c285313a52c647fe590456399616daccd10079c1bdbff69c17a3087aa472e609902fbe156fcbeaae0d6ce34188b4db225a04c27
- SSDEEP
  
  3072:22QO7oDuy0aJ5+ISDOnXDsHHZt0N8dAJ2yAGflgsQVpLH:22cuG5+IJAz0N82J2xAbQVpT
Score

10^/10

redline discovery infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
- Redline family
  redline
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

redlinediscoveryinfostealer

behavioral2

redlinediscoveryinfostealer

© 2018-2025

Terms | Privacy