General

  • Target

    E-invoicing_17_01_2021_804614300125.exe

  • Size

    20KB

  • Sample

    210118-mlk9zasqds

  • MD5

    6a30c4f159af10611e8b6780ca7e9fb9

  • SHA1

    f444965d6192c1dd8779665a5ec5f0dbc2e8781b

  • SHA256

    dc6aaf7acf8b088dd2f0a3cbffd5ae7e56ed1680aeccb2ff7eecb9d56796cf68

  • SHA512

    1da80a9e85d500a6ea00a650712f8227981feb20c6010def62d08657d822cc0c103eba8e21ca1293d22a23155953ac27a9e48ee3f9fe89c1ae5b08d59eef2dab

Score
10/10

Malware Config

Targets

    • Target

      E-invoicing_17_01_2021_804614300125.exe

    • Size

      20KB

    • MD5

      6a30c4f159af10611e8b6780ca7e9fb9

    • SHA1

      f444965d6192c1dd8779665a5ec5f0dbc2e8781b

    • SHA256

      dc6aaf7acf8b088dd2f0a3cbffd5ae7e56ed1680aeccb2ff7eecb9d56796cf68

    • SHA512

      1da80a9e85d500a6ea00a650712f8227981feb20c6010def62d08657d822cc0c103eba8e21ca1293d22a23155953ac27a9e48ee3f9fe89c1ae5b08d59eef2dab

    Score
    10/10
    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine Payload

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v6

Tasks