General

  • Target

    forderung.pdf.exe

  • Size

    265KB

  • Sample

    210131-a1vd3mj52n

  • MD5

    e6de6f3450a5dbfc9299a582e74ab242

  • SHA1

    3ecca1133b89e1032b8c77774089accf9ea2af85

  • SHA256

    feea736830ca5f27a8bceb7f9ffd01218bbc7301b5d8d3ab5e0716471e5f8ad5

  • SHA512

    a63f49e5da3bb6153c790272310f288d3e5cbffe23f2d33b30ca6f0911c8728cc09abd2974e1c100172799ea8bb164713ab81bd7b5cb126dbe95d6b1ce1fa472

Score
10/10

Malware Config

Targets

    • Target

      forderung.pdf.exe

    • Size

      265KB

    • MD5

      e6de6f3450a5dbfc9299a582e74ab242

    • SHA1

      3ecca1133b89e1032b8c77774089accf9ea2af85

    • SHA256

      feea736830ca5f27a8bceb7f9ffd01218bbc7301b5d8d3ab5e0716471e5f8ad5

    • SHA512

      a63f49e5da3bb6153c790272310f288d3e5cbffe23f2d33b30ca6f0911c8728cc09abd2974e1c100172799ea8bb164713ab81bd7b5cb126dbe95d6b1ce1fa472

    Score
    10/10
    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine Payload

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v6

Tasks