General
-
Target
440eeb434277bb497f70a835c5e77214.exe
-
Size
159KB
-
Sample
210323-rkzhjb8aas
-
MD5
440eeb434277bb497f70a835c5e77214
-
SHA1
dd96f350da9bbe8f84e376323224bf00910666f3
-
SHA256
264d1c1cbd93537901134c34c3cbae929ee2708ec8d80f666730d303f7f1f4f9
-
SHA512
03df0a34b6552186b0c9841c0d3f5fc768ed6b46096f2e424d2e73f155e58c5470bdb3b73337d2fc3cce2370b1908f1659921473a822e270e10537d12abd8bf7
Static task
static1
Behavioral task
behavioral1
Sample
440eeb434277bb497f70a835c5e77214.exe
Resource
win7v20201028
Behavioral task
behavioral2
Sample
440eeb434277bb497f70a835c5e77214.exe
Resource
win10v20201028
Malware Config
Targets
-
-
Target
440eeb434277bb497f70a835c5e77214.exe
-
Size
159KB
-
MD5
440eeb434277bb497f70a835c5e77214
-
SHA1
dd96f350da9bbe8f84e376323224bf00910666f3
-
SHA256
264d1c1cbd93537901134c34c3cbae929ee2708ec8d80f666730d303f7f1f4f9
-
SHA512
03df0a34b6552186b0c9841c0d3f5fc768ed6b46096f2e424d2e73f155e58c5470bdb3b73337d2fc3cce2370b1908f1659921473a822e270e10537d12abd8bf7
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Suspicious use of SetThreadContext
-