General
-
Target
CACC3559C7AE7B8F5A4210016F13B9FBFE2A1D457EDB4.exe
-
Size
572KB
-
Sample
210722-ed5t3w8vm2
-
MD5
59f3f9d13f2bdfe94922bfaf59ce1f7b
-
SHA1
b27083417010591f72a752dfc720ac46d3680117
-
SHA256
cacc3559c7ae7b8f5a4210016f13b9fbfe2a1d457edb4b013a5b5434956174e9
-
SHA512
c1741a86a0840eac5abd533e60f65642bcd412fa039f95982e20a2fe7fa05f2e05d331954980369ec28a60199e7fc4bf9d304b0b847433874145261dcebef6f8
Static task
static1
Behavioral task
behavioral1
Sample
CACC3559C7AE7B8F5A4210016F13B9FBFE2A1D457EDB4.exe
Resource
win7v20210410
Behavioral task
behavioral2
Sample
CACC3559C7AE7B8F5A4210016F13B9FBFE2A1D457EDB4.exe
Resource
win10v20210408
Malware Config
Extracted
redline
@morganatic_ll
18.117.82.8:58546
Targets
-
-
Target
CACC3559C7AE7B8F5A4210016F13B9FBFE2A1D457EDB4.exe
-
Size
572KB
-
MD5
59f3f9d13f2bdfe94922bfaf59ce1f7b
-
SHA1
b27083417010591f72a752dfc720ac46d3680117
-
SHA256
cacc3559c7ae7b8f5a4210016f13b9fbfe2a1d457edb4b013a5b5434956174e9
-
SHA512
c1741a86a0840eac5abd533e60f65642bcd412fa039f95982e20a2fe7fa05f2e05d331954980369ec28a60199e7fc4bf9d304b0b847433874145261dcebef6f8
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Suspicious use of SetThreadContext
-