General
-
Target
a2d5d0f3fbddec45a7d98eec6c647168.exe
-
Size
20KB
-
Sample
210218-xntznbmb3x
-
MD5
a2d5d0f3fbddec45a7d98eec6c647168
-
SHA1
95169670f77c58a9fb84255dfd6cc02ead6535d6
-
SHA256
e575af9a4b8de92d24859894514462f2c9ab0a5cb16cf1798a55c923613cd13c
-
SHA512
41c178d9bc4acbc21bd5d749763395a6f00c7b6acd42dc3e7fcf40b5e43b3b4fe132c52766a9261e110a3b06a6018a346e21f1ceb90e41a221194034767d6e06
Static task
static1
Behavioral task
behavioral1
Sample
a2d5d0f3fbddec45a7d98eec6c647168.exe
Resource
win7v20201028
Behavioral task
behavioral2
Sample
a2d5d0f3fbddec45a7d98eec6c647168.exe
Resource
win10v20201028
Malware Config
Targets
-
-
Target
a2d5d0f3fbddec45a7d98eec6c647168.exe
-
Size
20KB
-
MD5
a2d5d0f3fbddec45a7d98eec6c647168
-
SHA1
95169670f77c58a9fb84255dfd6cc02ead6535d6
-
SHA256
e575af9a4b8de92d24859894514462f2c9ab0a5cb16cf1798a55c923613cd13c
-
SHA512
41c178d9bc4acbc21bd5d749763395a6f00c7b6acd42dc3e7fcf40b5e43b3b4fe132c52766a9261e110a3b06a6018a346e21f1ceb90e41a221194034767d6e06
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Suspicious use of SetThreadContext
-