redline | 0d22622ff24d48bfcc81b59ba8389299593175dd8665b5a2d7c43bf2c79deb8c | Triage

Submit
Reports

Overview

overview

Static

static

3

JaffaCakes...99.exe

windows7-x64

JaffaCakes...99.exe

windows10-2004-x64

Sharing

General

Target

JaffaCakes118_90a587a7322248ee1034938faf89f099
Size

3.6MB
Sample

250108-hbev6azrfp
MD5

90a587a7322248ee1034938faf89f099
SHA1

a7650331ff718e7fff62dc3a5c4a07802d50d2c4
SHA256

0d22622ff24d48bfcc81b59ba8389299593175dd8665b5a2d7c43bf2c79deb8c
SHA512

1ecee25658d8e3f957f1ccdf207a27ff8d8e9e59684151064e90e4931a638c2227ffe4510b4672adf1f39cd672d6128a8ddfb4fa1e42e2004c56f3d6f737f576
SSDEEP

98304:Xb0iUG90gkj7xlbaKRkS0RhLdhWlDH5nq4S3Wh:XY5Q0g+7TbkSsmDo4aWh

Score

10^/10

redline discovery infostealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

JaffaCakes118_90a587a7322248ee1034938faf89f099.exe

Resource

win7-20241010-en

redline discovery infostealer

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

JaffaCakes118_90a587a7322248ee1034938faf89f099.exe

Resource

win10v2004-20241007-en

redline discovery infostealer

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  JaffaCakes118_90a587a7322248ee1034938faf89f099
- Size
  
  3.6MB
- MD5
  
  90a587a7322248ee1034938faf89f099
- SHA1
  
  a7650331ff718e7fff62dc3a5c4a07802d50d2c4
- SHA256
  
  0d22622ff24d48bfcc81b59ba8389299593175dd8665b5a2d7c43bf2c79deb8c
- SHA512
  
  1ecee25658d8e3f957f1ccdf207a27ff8d8e9e59684151064e90e4931a638c2227ffe4510b4672adf1f39cd672d6128a8ddfb4fa1e42e2004c56f3d6f737f576
- SSDEEP
  
  98304:Xb0iUG90gkj7xlbaKRkS0RhLdhWlDH5nq4S3Wh:XY5Q0g+7TbkSsmDo4aWh
Score

10^/10

redline discovery infostealer
- RedLine
  RedLine Stealer is a malware family written in C#, first appearing in early 2020.
  infostealer redline
- RedLine payload
- Redline family
  redline
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

redlinediscoveryinfostealer

behavioral2

redlinediscoveryinfostealer

© 2018-2025

Terms | Privacy