General
-
Target
941e3c8549aeb8a5ad817c084688595f.exe
-
Size
609KB
-
Sample
210726-zkeektv5wj
-
MD5
941e3c8549aeb8a5ad817c084688595f
-
SHA1
027613c16b6291635039f2ebd6f04a71daf66715
-
SHA256
828db99b2939fbdc9397cea77ee15a611198f643a9e2a636226817d753e39806
-
SHA512
3b9f8577a11ea6eeb6bacd1d457506fa44f6b1b80bb8b936d3f3eecf5fd00ef4f9e46defff1f23ddd51d1725e0df541fecfa58b5c5e9a0903a758f46952af1c7
Static task
static1
Behavioral task
behavioral1
Sample
941e3c8549aeb8a5ad817c084688595f.exe
Resource
win7v20210408
Behavioral task
behavioral2
Sample
941e3c8549aeb8a5ad817c084688595f.exe
Resource
win10v20210408
Malware Config
Extracted
redline
193.38.55.96:53888
Targets
-
-
Target
941e3c8549aeb8a5ad817c084688595f.exe
-
Size
609KB
-
MD5
941e3c8549aeb8a5ad817c084688595f
-
SHA1
027613c16b6291635039f2ebd6f04a71daf66715
-
SHA256
828db99b2939fbdc9397cea77ee15a611198f643a9e2a636226817d753e39806
-
SHA512
3b9f8577a11ea6eeb6bacd1d457506fa44f6b1b80bb8b936d3f3eecf5fd00ef4f9e46defff1f23ddd51d1725e0df541fecfa58b5c5e9a0903a758f46952af1c7
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Suspicious use of SetThreadContext
-