Overview

overview

10

Static

static

671e6f4225...ba.exe

windows7_x64

10

671e6f4225...ba.exe

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    671e6f422545a4273412a90df532cfba

  • Size

    241KB

  • Sample

    210109-yxrf73fdr6

  • MD5

    671e6f422545a4273412a90df532cfba

  • SHA1

    f0fc814796366c45b48d998663f26b68bdf84150

  • SHA256

    3729cc0e9183d4e4e6e7c9b82311538cc4357e35f817c32791131cc62a32ae1a

  • SHA512

    2f07e3ce8a344347697a33346fef48cadab56c4e6bb815147bec8d832acee78652926d3e2ce318fa35f3b3fd99090f36148240fb2035c4a14c1f15261e8232c2

Score
10/10
redlineinfostealer

Malware Config

Targets

    • Target

      671e6f422545a4273412a90df532cfba

    • Size

      241KB

    • MD5

      671e6f422545a4273412a90df532cfba

    • SHA1

      f0fc814796366c45b48d998663f26b68bdf84150

    • SHA256

      3729cc0e9183d4e4e6e7c9b82311538cc4357e35f817c32791131cc62a32ae1a

    • SHA512

      2f07e3ce8a344347697a33346fef48cadab56c4e6bb815147bec8d832acee78652926d3e2ce318fa35f3b3fd99090f36148240fb2035c4a14c1f15261e8232c2

    Score
    10/10
    redlineinfostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine Payload

    • Executes dropped EXE

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks