General
-
Target
ed8e53b91d3104187394eeab45283df75883b54bb95192f374cec8de5f4e525e
-
Size
641KB
-
Sample
220326-msb8tabfg3
-
MD5
44564ce5cd67ff12f0ef919440d781c0
-
SHA1
fd8b84190423064a975776d240c0e1d2a68309cd
-
SHA256
ed8e53b91d3104187394eeab45283df75883b54bb95192f374cec8de5f4e525e
-
SHA512
764069d1326835e2b2b3fb2d9063ad3dcb45c06cd9f34a7dee036afc4701c533b1fec708b26a964ec8d3db2147a452cd48cc2d1d3163b34633269f5b1e30ae0b
Static task
static1
Behavioral task
behavioral1
Sample
ed8e53b91d3104187394eeab45283df75883b54bb95192f374cec8de5f4e525e.exe
Resource
win7-20220311-en
Behavioral task
behavioral2
Sample
ed8e53b91d3104187394eeab45283df75883b54bb95192f374cec8de5f4e525e.exe
Resource
win10v2004-en-20220113
Malware Config
Extracted
redline
NEW_YEAR_BTC
86.105.252.12:35200
Targets
-
-
Target
ed8e53b91d3104187394eeab45283df75883b54bb95192f374cec8de5f4e525e
-
Size
641KB
-
MD5
44564ce5cd67ff12f0ef919440d781c0
-
SHA1
fd8b84190423064a975776d240c0e1d2a68309cd
-
SHA256
ed8e53b91d3104187394eeab45283df75883b54bb95192f374cec8de5f4e525e
-
SHA512
764069d1326835e2b2b3fb2d9063ad3dcb45c06cd9f34a7dee036afc4701c533b1fec708b26a964ec8d3db2147a452cd48cc2d1d3163b34633269f5b1e30ae0b
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Suspicious use of SetThreadContext
-