General
-
Target
83266F04C5408EF7BC34322915EFF1AE.exe
-
Size
20KB
-
Sample
210504-m4ezgr44an
-
MD5
83266f04c5408ef7bc34322915eff1ae
-
SHA1
f3873df5bf26f7ec46cf95e673b1eec847ee1727
-
SHA256
9658197c370e5eb1ab5d88687883b342f5b2accda492657e9cb3ca9412ac06ac
-
SHA512
833179cee4a107b0dd51c4df4c02217af25b0bf4157dc35aff7c3b594adb1d1fea4096495059f49b160a1d1e494580399abf59f0d665ff4cda7fcd20cd1bf5c2
Static task
static1
Behavioral task
behavioral1
Sample
83266F04C5408EF7BC34322915EFF1AE.exe
Resource
win7v20210410
Behavioral task
behavioral2
Sample
83266F04C5408EF7BC34322915EFF1AE.exe
Resource
win10v20210408
Malware Config
Extracted
redline
NEW
91.210.170.102:1030
Targets
-
-
Target
83266F04C5408EF7BC34322915EFF1AE.exe
-
Size
20KB
-
MD5
83266f04c5408ef7bc34322915eff1ae
-
SHA1
f3873df5bf26f7ec46cf95e673b1eec847ee1727
-
SHA256
9658197c370e5eb1ab5d88687883b342f5b2accda492657e9cb3ca9412ac06ac
-
SHA512
833179cee4a107b0dd51c4df4c02217af25b0bf4157dc35aff7c3b594adb1d1fea4096495059f49b160a1d1e494580399abf59f0d665ff4cda7fcd20cd1bf5c2
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Accesses cryptocurrency files/wallets, possible credential harvesting
-
Suspicious use of SetThreadContext
-