RedLine.E | 9280d7dadb8e

Classifications

Downloader Spyware

Threat Names

RedLine.E Mal/Generic-S

Dynamic Analysis Report

Created on 2024-04-06T09:36:25+00:00

Installer.exe

Windows Exe (x86-32)

Remarks (2/2)

Max File Reputation Requests Reached (0x0200001B): The maximum number of file Reputation Analysis requests per analysis (150) was exceeded.

Anti-Sleep Triggered (0x0200000E): The overall sleep time of all monitored processes was truncated from "1 hour, 1 minute, 51 seconds" to "33 seconds" to reveal dormant functionality.

General

660.45 KB total sent, 16.69 MB total received

2 ports: 443, 53

4 contacted IP addresses

0 URLs extracted

319 files downloaded

1 malicious hosts detected

DNS

185 Bytes sent, 313 Bytes received

3 queries for 3 domains

1 name server contacted

0 queries returned errors

HTTP/S

674.66 KB sent, 22.15 MB received

9 URLs, 3 contacted servers

886 sessions detected

Function Logfile

This feature requires an online-connection to the VMRay backend.

An offline version with limited functionality is also provided.
The offline version is supported only in Mozilla Firefoxwith deactivated setting \"security.fileuri.strict_origin_policy\".

Before

After

WHOIS Domain Information

Screenshot

Domain Name
WHOIS Response