General
-
Target
SecuriteInfo.com.Trojan.PWS.Siggen2.61843.30671.18962
-
Size
964KB
-
Sample
210311-pp7epsxzsx
-
MD5
218e564d52558e9437a00601e0289a88
-
SHA1
e439b35866d02d80f38fcb636cd71174d6f8ed6e
-
SHA256
0d5b06c5a7a55b382d9d383884b51fd1bfee2a1166f8778f16f3163207d0d373
-
SHA512
10d7ff9a9141139e20dd96a42c334aee5033319d9a7bba55e7887bfea56b3ae99306342e825cfaee9ec45502990e4f0a6592d9c8d7ea06b10723230dc594aefc
Static task
static1
Behavioral task
behavioral1
Sample
SecuriteInfo.com.Trojan.PWS.Siggen2.61843.30671.18962.exe
Resource
win7v20201028
Behavioral task
behavioral2
Sample
SecuriteInfo.com.Trojan.PWS.Siggen2.61843.30671.18962.exe
Resource
win10v20201028
Malware Config
Targets
-
-
Target
SecuriteInfo.com.Trojan.PWS.Siggen2.61843.30671.18962
-
Size
964KB
-
MD5
218e564d52558e9437a00601e0289a88
-
SHA1
e439b35866d02d80f38fcb636cd71174d6f8ed6e
-
SHA256
0d5b06c5a7a55b382d9d383884b51fd1bfee2a1166f8778f16f3163207d0d373
-
SHA512
10d7ff9a9141139e20dd96a42c334aee5033319d9a7bba55e7887bfea56b3ae99306342e825cfaee9ec45502990e4f0a6592d9c8d7ea06b10723230dc594aefc
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Suspicious use of SetThreadContext
-