Overview

overview

10

Static

static

fb4122470c...c2.exe

windows7_x64

10

fb4122470c...c2.exe

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    fb4122470cc256c61d690d7c1d5257c2.exe

  • Size

    21KB

  • Sample

    210217-4ztwchf9qn

  • MD5

    fb4122470cc256c61d690d7c1d5257c2

  • SHA1

    1c88e38db4ca50ce1f23cc095c16ad0af0c2890a

  • SHA256

    ef9a0bce5286a538e8a405e41aa15b2fe89bb40323558ee88ac14e4f7e81c818

  • SHA512

    b3b9f53f976b9043ac8985a626b4e14a54ee74a0ee5505de542a49be3d79e961cc535c3c5d93019731423c5af9bf342c7707edb5c920f3457f3f7dfff2cbc4e5

Score
10/10
redlineinfostealer

Malware Config

Targets

    • Target

      fb4122470cc256c61d690d7c1d5257c2.exe

    • Size

      21KB

    • MD5

      fb4122470cc256c61d690d7c1d5257c2

    • SHA1

      1c88e38db4ca50ce1f23cc095c16ad0af0c2890a

    • SHA256

      ef9a0bce5286a538e8a405e41aa15b2fe89bb40323558ee88ac14e4f7e81c818

    • SHA512

      b3b9f53f976b9043ac8985a626b4e14a54ee74a0ee5505de542a49be3d79e961cc535c3c5d93019731423c5af9bf342c7707edb5c920f3457f3f7dfff2cbc4e5

    Score
    10/10
    redlineinfostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine Payload

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks