General
-
Target
57f0a9ff858a43eaed35ec6b5c8f71e67ad1bacf6edab26fda9f5fedc2847f3d
-
Size
787KB
-
Sample
220319-l129jafdgl
-
MD5
51abbeb64421102bb90f4505f4d5a22e
-
SHA1
3d22e24ae28a6eb2da2963c0567f79728d3c6964
-
SHA256
57f0a9ff858a43eaed35ec6b5c8f71e67ad1bacf6edab26fda9f5fedc2847f3d
-
SHA512
c819e0dcdfac39a4e8f1774e73f130d84c10b9f9b5665bb8b640496a3599b7bfc0e3556503761ce1290fa0513cb199d3bf66d96309235288e7a4d063ca8295d3
Static task
static1
Behavioral task
behavioral1
Sample
57f0a9ff858a43eaed35ec6b5c8f71e67ad1bacf6edab26fda9f5fedc2847f3d.exe
Resource
win7-20220310-en
Behavioral task
behavioral2
Sample
57f0a9ff858a43eaed35ec6b5c8f71e67ad1bacf6edab26fda9f5fedc2847f3d.exe
Resource
win10v2004-en-20220113
Malware Config
Extracted
redline
2
188.119.112.224:2581
Targets
-
-
Target
57f0a9ff858a43eaed35ec6b5c8f71e67ad1bacf6edab26fda9f5fedc2847f3d
-
Size
787KB
-
MD5
51abbeb64421102bb90f4505f4d5a22e
-
SHA1
3d22e24ae28a6eb2da2963c0567f79728d3c6964
-
SHA256
57f0a9ff858a43eaed35ec6b5c8f71e67ad1bacf6edab26fda9f5fedc2847f3d
-
SHA512
c819e0dcdfac39a4e8f1774e73f130d84c10b9f9b5665bb8b640496a3599b7bfc0e3556503761ce1290fa0513cb199d3bf66d96309235288e7a4d063ca8295d3
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Suspicious use of SetThreadContext
-