General
-
Target
925406572.exe
-
Size
352KB
-
Sample
210312-j4779d3aqn
-
MD5
8f42d6ac2ff0bd507f77fc6f2077ecae
-
SHA1
3f6eb11f4dc112aed5aac9fe3feb78f77e068c93
-
SHA256
cb1c124f7c5ee7ff7e260a15a4c8dcbce9dc4d3c3f4a1bbc54fda408970d045f
-
SHA512
2de3ab74384d24ccc5ae083dda82956d722f87e5d0b06ee183a42b92c8a881758940b773e2aa19ecb0a0b22c0b5522e60700604011f12cb2e72c06722864daa7
Static task
static1
Behavioral task
behavioral1
Sample
925406572.exe
Resource
win7v20201028
Behavioral task
behavioral2
Sample
925406572.exe
Resource
win10v20201028
Malware Config
Targets
-
-
Target
925406572.exe
-
Size
352KB
-
MD5
8f42d6ac2ff0bd507f77fc6f2077ecae
-
SHA1
3f6eb11f4dc112aed5aac9fe3feb78f77e068c93
-
SHA256
cb1c124f7c5ee7ff7e260a15a4c8dcbce9dc4d3c3f4a1bbc54fda408970d045f
-
SHA512
2de3ab74384d24ccc5ae083dda82956d722f87e5d0b06ee183a42b92c8a881758940b773e2aa19ecb0a0b22c0b5522e60700604011f12cb2e72c06722864daa7
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Suspicious use of SetThreadContext
-