General
-
Target
SecuriteInfo.com.Trojan.PWS.Siggen2.62670.17922.27207
-
Size
256KB
-
Sample
210311-wjm5zz34xn
-
MD5
8ca675896f6c9ad9fe8deb1cc63bf8f5
-
SHA1
59ce426a1d26cf3a5a8552da59263475bfded136
-
SHA256
abf61356eb007bc0eb51c4208af46dd2ed3d8d94c10dffa7ff5a5c0a4a802a74
-
SHA512
d9225a3903610408d8dfb7447f8ca37a4dec05b1b86ad56c4c99e4f22087ab75a2283e827032ebf03735276601ba87827b303a52ca06c04908314bc16872babc
Static task
static1
Behavioral task
behavioral1
Sample
SecuriteInfo.com.Trojan.PWS.Siggen2.62670.17922.27207.exe
Resource
win7v20201028
Behavioral task
behavioral2
Sample
SecuriteInfo.com.Trojan.PWS.Siggen2.62670.17922.27207.exe
Resource
win10v20201028
Malware Config
Targets
-
-
Target
SecuriteInfo.com.Trojan.PWS.Siggen2.62670.17922.27207
-
Size
256KB
-
MD5
8ca675896f6c9ad9fe8deb1cc63bf8f5
-
SHA1
59ce426a1d26cf3a5a8552da59263475bfded136
-
SHA256
abf61356eb007bc0eb51c4208af46dd2ed3d8d94c10dffa7ff5a5c0a4a802a74
-
SHA512
d9225a3903610408d8dfb7447f8ca37a4dec05b1b86ad56c4c99e4f22087ab75a2283e827032ebf03735276601ba87827b303a52ca06c04908314bc16872babc
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Executes dropped EXE
-
Loads dropped DLL
-
Suspicious use of SetThreadContext
-