Overview
overview
10Static
static
10Redline.St...ed.rar
windows7-x64
7Redline.St...ed.rar
windows10-2004-x64
1Redline St...52.dll
windows7-x64
1Redline St...52.dll
windows10-2004-x64
1Redline St...ng.dll
windows7-x64
1Redline St...ng.dll
windows10-2004-x64
1Redline St...ib.dll
windows7-x64
1Redline St...ib.dll
windows10-2004-x64
1Redline St...or.dll
windows7-x64
1Redline St...or.dll
windows10-2004-x64
1Redline St...Db.bin
windows7-x64
1Redline St...Db.bin
windows10-2004-x64
1Redline St...Db.bin
windows7-x64
1Redline St...Db.bin
windows10-2004-x64
1Redline St...UI.dll
windows7-x64
1Redline St...UI.dll
windows10-2004-x64
1Redline St...es.dll
windows7-x64
1Redline St...es.dll
windows10-2004-x64
1Redline St...tp.dll
windows7-x64
1Redline St...tp.dll
windows10-2004-x64
1Redline St...ma.dll
windows7-x64
1Redline St...ma.dll
windows10-2004-x64
1Redline St...on.dll
windows7-x64
1Redline St...on.dll
windows10-2004-x64
1Redline St...el.exe
windows7-x64
3Redline St...el.exe
windows10-2004-x64
7Redline St...config
windows7-x64
1Redline St...config
windows10-2004-x64
1Redline St...to.dll
windows7-x64
1Redline St...to.dll
windows10-2004-x64
1Redline St...rp.dll
windows7-x64
1Redline St...rp.dll
windows10-2004-x64
1Analysis
-
max time kernel
149s -
max time network
151s -
platform
windows10-2004_x64 -
resource
win10v2004-20241007-en -
resource tags
arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system -
submitted
28-01-2025 21:47
Behavioral task
behavioral1
Sample
Redline.Stealer.v30.2.Cracked.rar
Resource
win7-20240903-en
windows7-x64
Behavioral task
behavioral2
Sample
Redline.Stealer.v30.2.Cracked.rar
Resource
win10v2004-20241007-en
windows10-2004-x64
Behavioral task
behavioral3
Sample
Redline Stealer v30.2 Cracked By @Drcrypt0r/Panel/Bunifu_UI_v1.52.dll
Resource
win7-20240708-en
windows7-x64
Behavioral task
behavioral4
Sample
Redline Stealer v30.2 Cracked By @Drcrypt0r/Panel/Bunifu_UI_v1.52.dll
Resource
win10v2004-20241007-en
windows10-2004-x64
Behavioral task
behavioral5
Sample
Redline Stealer v30.2 Cracked By @Drcrypt0r/Panel/Common.Logging.dll
Resource
win7-20241010-en
windows7-x64
Behavioral task
behavioral6
Sample
Redline Stealer v30.2 Cracked By @Drcrypt0r/Panel/Common.Logging.dll
Resource
win10v2004-20241007-en
windows10-2004-x64
Behavioral task
behavioral7
Sample
Redline Stealer v30.2 Cracked By @Drcrypt0r/Panel/GuiLib.dll
Resource
win7-20241010-en
windows7-x64
Behavioral task
behavioral8
Sample
Redline Stealer v30.2 Cracked By @Drcrypt0r/Panel/GuiLib.dll
Resource
win10v2004-20241007-en
windows10-2004-x64
Behavioral task
behavioral9
Sample
Redline Stealer v30.2 Cracked By @Drcrypt0r/Panel/IPLocator.dll
Resource
win7-20241010-en
windows7-x64
Behavioral task
behavioral10
Sample
Redline Stealer v30.2 Cracked By @Drcrypt0r/Panel/IPLocator.dll
Resource
win10v2004-20241007-en
windows10-2004-x64
Behavioral task
behavioral11
Sample
Redline Stealer v30.2 Cracked By @Drcrypt0r/Panel/IpDb/IpDb.bin
Resource
win7-20241010-en
windows7-x64
Behavioral task
behavioral12
Sample
Redline Stealer v30.2 Cracked By @Drcrypt0r/Panel/IpDb/IpDb.bin
Resource
win10v2004-20241007-en
windows10-2004-x64
Behavioral task
behavioral13
Sample
Redline Stealer v30.2 Cracked By @Drcrypt0r/Panel/IpDb/Ipv6Db.bin
Resource
win7-20241010-en
windows7-x64
Behavioral task
behavioral14
Sample
Redline Stealer v30.2 Cracked By @Drcrypt0r/Panel/IpDb/Ipv6Db.bin
Resource
win10v2004-20241007-en
windows10-2004-x64
Behavioral task
behavioral15
Sample
Redline Stealer v30.2 Cracked By @Drcrypt0r/Panel/MetroSet UI.dll
Resource
win7-20241010-en
windows7-x64
Behavioral task
behavioral16
Sample
Redline Stealer v30.2 Cracked By @Drcrypt0r/Panel/MetroSet UI.dll
Resource
win10v2004-20241007-en
windows10-2004-x64
Behavioral task
behavioral17
Sample
Redline Stealer v30.2 Cracked By @Drcrypt0r/Panel/Microsoft.Bcl.AsyncInterfaces.dll
Resource
win7-20240903-en
windows7-x64
Behavioral task
behavioral18
Sample
Redline Stealer v30.2 Cracked By @Drcrypt0r/Panel/Microsoft.Bcl.AsyncInterfaces.dll
Resource
win10v2004-20241007-en
windows10-2004-x64
Behavioral task
behavioral19
Sample
Redline Stealer v30.2 Cracked By @Drcrypt0r/Panel/NHttp.dll
Resource
win7-20240903-en
windows7-x64
Behavioral task
behavioral20
Sample
Redline Stealer v30.2 Cracked By @Drcrypt0r/Panel/NHttp.dll
Resource
win10v2004-20241007-en
windows10-2004-x64
Behavioral task
behavioral21
Sample
Redline Stealer v30.2 Cracked By @Drcrypt0r/Panel/Newtonsoft.Json.Schema.dll
Resource
win7-20240903-en
windows7-x64
Behavioral task
behavioral22
Sample
Redline Stealer v30.2 Cracked By @Drcrypt0r/Panel/Newtonsoft.Json.Schema.dll
Resource
win10v2004-20241007-en
windows10-2004-x64
Behavioral task
behavioral23
Sample
Redline Stealer v30.2 Cracked By @Drcrypt0r/Panel/Newtonsoft.Json.dll
Resource
win7-20240903-en
windows7-x64
Behavioral task
behavioral24
Sample
Redline Stealer v30.2 Cracked By @Drcrypt0r/Panel/Newtonsoft.Json.dll
Resource
win10v2004-20241007-en
windows10-2004-x64
Behavioral task
behavioral25
Sample
Redline Stealer v30.2 Cracked By @Drcrypt0r/Panel/Panel.exe
Resource
win7-20240903-en
windows7-x64
Behavioral task
behavioral26
Sample
Redline Stealer v30.2 Cracked By @Drcrypt0r/Panel/Panel.exe
Resource
win10v2004-20241007-en
windows10-2004-x64
Behavioral task
behavioral27
Sample
Redline Stealer v30.2 Cracked By @Drcrypt0r/Panel/Panel.exe.config
Resource
win7-20241010-en
windows7-x64
Behavioral task
behavioral28
Sample
Redline Stealer v30.2 Cracked By @Drcrypt0r/Panel/Panel.exe.config
Resource
win10v2004-20241007-en
windows10-2004-x64
Behavioral task
behavioral29
Sample
Redline Stealer v30.2 Cracked By @Drcrypt0r/Panel/Pluralsight.Crypto.dll
Resource
win7-20241010-en
windows7-x64
Behavioral task
behavioral30
Sample
Redline Stealer v30.2 Cracked By @Drcrypt0r/Panel/Pluralsight.Crypto.dll
Resource
win10v2004-20241007-en
windows10-2004-x64
Behavioral task
behavioral31
Sample
Redline Stealer v30.2 Cracked By @Drcrypt0r/Panel/RestSharp.dll
Resource
win7-20240903-en
windows7-x64
Behavioral task
behavioral32
Sample
Redline Stealer v30.2 Cracked By @Drcrypt0r/Panel/RestSharp.dll
Resource
win10v2004-20241007-en
windows10-2004-x64
General
-
Target
Redline.Stealer.v30.2.Cracked.rar
-
Size
35.9MB
-
MD5
ea3f5a9a0a1656e048a2640ca4007481
-
SHA1
3169637282b23fa49c4e5c6f3645157ab24722c7
-
SHA256
b5cd68d3b2d6e79a5d15fa737dfae474a39aa7910759f7ca28bc1d9804359a44
-
SHA512
ddd96a0857d5ba3041960eb565ee79990fd6d28d7438865e3400fadbf4446c2034f79bc0dc0787dd3d675bc8b9c6607b468747bf161a06a752cf17f3a9f6cd79
-
SSDEEP
786432:pwssBHZtEPztNd1SzC4lqjAbYciGOARzXT/zA9kz:pzatEPJN/LkbTHj/7z
Malware Config
Signatures
-
Suspicious use of AdjustPrivilegeToken 2 IoCs
description pid Process Token: SeRestorePrivilege 3168 7zFM.exe Token: 35 3168 7zFM.exe -
Suspicious use of FindShellTrayWindow 1 IoCs
pid Process 3168 7zFM.exe