General
-
Target
88d8cfc5408b886989697c951a26e10c7ecd605bdebf3a4218dda7053002b926
-
Size
719KB
-
Sample
211021-1ah6asbfep
-
MD5
0068f1a9d11db46097fae660005c1228
-
SHA1
1a7fc24cccaa5bfeae87446a22605a0a475bb409
-
SHA256
88d8cfc5408b886989697c951a26e10c7ecd605bdebf3a4218dda7053002b926
-
SHA512
75525095421bf3866e4f465ed2ed89759230248ec08064865b6cf0435c254586960ee8c957a06a16a5c4693bd386338ec7554e820d94045674f172c141938a36
Static task
static1
Behavioral task
behavioral1
Sample
88d8cfc5408b886989697c951a26e10c7ecd605bdebf3a4218dda7053002b926.exe
Resource
win10-en-20211014
Malware Config
Extracted
redline
1.0.2.0
185.183.32.227:51498
Targets
-
-
Target
88d8cfc5408b886989697c951a26e10c7ecd605bdebf3a4218dda7053002b926
-
Size
719KB
-
MD5
0068f1a9d11db46097fae660005c1228
-
SHA1
1a7fc24cccaa5bfeae87446a22605a0a475bb409
-
SHA256
88d8cfc5408b886989697c951a26e10c7ecd605bdebf3a4218dda7053002b926
-
SHA512
75525095421bf3866e4f465ed2ed89759230248ec08064865b6cf0435c254586960ee8c957a06a16a5c4693bd386338ec7554e820d94045674f172c141938a36
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Executes dropped EXE
-
Suspicious use of SetThreadContext
-