General
-
Target
fb4122470cc256c61d690d7c1d5257c2.exe
-
Size
21KB
-
Sample
210217-4ztwchf9qn
-
MD5
fb4122470cc256c61d690d7c1d5257c2
-
SHA1
1c88e38db4ca50ce1f23cc095c16ad0af0c2890a
-
SHA256
ef9a0bce5286a538e8a405e41aa15b2fe89bb40323558ee88ac14e4f7e81c818
-
SHA512
b3b9f53f976b9043ac8985a626b4e14a54ee74a0ee5505de542a49be3d79e961cc535c3c5d93019731423c5af9bf342c7707edb5c920f3457f3f7dfff2cbc4e5
Static task
static1
Behavioral task
behavioral1
Sample
fb4122470cc256c61d690d7c1d5257c2.exe
Resource
win7v20201028
Behavioral task
behavioral2
Sample
fb4122470cc256c61d690d7c1d5257c2.exe
Resource
win10v20201028
Malware Config
Targets
-
-
Target
fb4122470cc256c61d690d7c1d5257c2.exe
-
Size
21KB
-
MD5
fb4122470cc256c61d690d7c1d5257c2
-
SHA1
1c88e38db4ca50ce1f23cc095c16ad0af0c2890a
-
SHA256
ef9a0bce5286a538e8a405e41aa15b2fe89bb40323558ee88ac14e4f7e81c818
-
SHA512
b3b9f53f976b9043ac8985a626b4e14a54ee74a0ee5505de542a49be3d79e961cc535c3c5d93019731423c5af9bf342c7707edb5c920f3457f3f7dfff2cbc4e5
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Suspicious use of SetThreadContext
-