General
-
Target
SecuriteInfo.com.Variant.Razy.839017.9294.5645
-
Size
32KB
-
Sample
210309-p324m48m2j
-
MD5
93e0f82e3ead62aa5f6374ccae24a45a
-
SHA1
2ad7d2537f16fe2012ec4f5ae30db77a3076954e
-
SHA256
616939c7c18fb2b2003c879f8e5cf41fbd7e4291fda08e969592dcc213ed4941
-
SHA512
c8bb3dcf9ab6e4f28776be9f4caab98803d51d03a5208a3d624386265cb227cda09a6bd9c8ef76b5e4774b82d7537ce169093fa12a2f91bbc7d834be6a9261e0
Static task
static1
Behavioral task
behavioral1
Sample
SecuriteInfo.com.Variant.Razy.839017.9294.5645.exe
Resource
win7v20201028
Behavioral task
behavioral2
Sample
SecuriteInfo.com.Variant.Razy.839017.9294.5645.exe
Resource
win10v20201028
Malware Config
Targets
-
-
Target
SecuriteInfo.com.Variant.Razy.839017.9294.5645
-
Size
32KB
-
MD5
93e0f82e3ead62aa5f6374ccae24a45a
-
SHA1
2ad7d2537f16fe2012ec4f5ae30db77a3076954e
-
SHA256
616939c7c18fb2b2003c879f8e5cf41fbd7e4291fda08e969592dcc213ed4941
-
SHA512
c8bb3dcf9ab6e4f28776be9f4caab98803d51d03a5208a3d624386265cb227cda09a6bd9c8ef76b5e4774b82d7537ce169093fa12a2f91bbc7d834be6a9261e0
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Suspicious use of SetThreadContext
-