General
-
Target
46AF013AC14876AB502AEF13540BD007.exe
-
Size
65KB
-
Sample
210323-5rzdbkcqwe
-
MD5
46af013ac14876ab502aef13540bd007
-
SHA1
5ced5ae95a3d4a302204a9c223e1ff0f0d161bd8
-
SHA256
275b527d14d8cfd6494cda04718e8e77a05a8779d034119d1772590be6257348
-
SHA512
48ec87b9d9ba3ca6f3fe4b5835ddca2c94d07baf9ccb1707d11af978859a41e770627ae99bf4d528c76b5ee13c6df0769cfddc12f15680f5d201f27023ecae63
Static task
static1
Behavioral task
behavioral1
Sample
46AF013AC14876AB502AEF13540BD007.exe
Resource
win7v20201028
Behavioral task
behavioral2
Sample
46AF013AC14876AB502AEF13540BD007.exe
Resource
win10v20201028
Malware Config
Targets
-
-
Target
46AF013AC14876AB502AEF13540BD007.exe
-
Size
65KB
-
MD5
46af013ac14876ab502aef13540bd007
-
SHA1
5ced5ae95a3d4a302204a9c223e1ff0f0d161bd8
-
SHA256
275b527d14d8cfd6494cda04718e8e77a05a8779d034119d1772590be6257348
-
SHA512
48ec87b9d9ba3ca6f3fe4b5835ddca2c94d07baf9ccb1707d11af978859a41e770627ae99bf4d528c76b5ee13c6df0769cfddc12f15680f5d201f27023ecae63
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
Executes dropped EXE
-
Loads dropped DLL
-
Suspicious use of SetThreadContext
-