General
-
Target
6997c18c233c36c25ef1ce1227da836f.exe
-
Size
25KB
-
Sample
210125-v3fjwqy4ts
-
MD5
6997c18c233c36c25ef1ce1227da836f
-
SHA1
8f15dcd5942b3afc42b3cbb1fed2869ebe5e106b
-
SHA256
2eb37b1a65e93d5619e44bb3734b321c97f195a6d079386194a84a5a1617c2dc
-
SHA512
c48475030eb159479845c08b62879db01ebe4dec5d472f8769af34e3581f9dbf896249c982bf47facb12882cab011fe2647d37842274480d64ff7f452e3a4765
Static task
static1
Behavioral task
behavioral1
Sample
6997c18c233c36c25ef1ce1227da836f.exe
Resource
win7v20201028
Behavioral task
behavioral2
Sample
6997c18c233c36c25ef1ce1227da836f.exe
Resource
win10v20201028
Malware Config
Targets
-
-
Target
6997c18c233c36c25ef1ce1227da836f.exe
-
Size
25KB
-
MD5
6997c18c233c36c25ef1ce1227da836f
-
SHA1
8f15dcd5942b3afc42b3cbb1fed2869ebe5e106b
-
SHA256
2eb37b1a65e93d5619e44bb3734b321c97f195a6d079386194a84a5a1617c2dc
-
SHA512
c48475030eb159479845c08b62879db01ebe4dec5d472f8769af34e3581f9dbf896249c982bf47facb12882cab011fe2647d37842274480d64ff7f452e3a4765
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Suspicious use of SetThreadContext
-