General
-
Target
51410421875a08ce24b7cfcdc9f02dee73a42f8da510559fc5ad98011a053ef4
-
Size
1.2MB
-
Sample
220329-y5jdfaehfp
-
MD5
004fe49453b7a12a1087ca4fb0baff26
-
SHA1
0b8dea5738277fb6eaf7256e69aa28cae5ff17c7
-
SHA256
51410421875a08ce24b7cfcdc9f02dee73a42f8da510559fc5ad98011a053ef4
-
SHA512
bd10cf487f6f9bca5fcd9cdbc6ae1f6470842cd5678b6a2b135af000a64c6c12dd32452b666c3bab27002671ff42ad7e2a738a831babddf0593a60a48dd38d55
Static task
static1
Behavioral task
behavioral1
Sample
51410421875a08ce24b7cfcdc9f02dee73a42f8da510559fc5ad98011a053ef4.exe
Resource
win7-20220310-en
Behavioral task
behavioral2
Sample
51410421875a08ce24b7cfcdc9f02dee73a42f8da510559fc5ad98011a053ef4.exe
Resource
win10v2004-en-20220113
Malware Config
Extracted
redline
Hacker
45.139.236.86:35200
Targets
-
-
Target
51410421875a08ce24b7cfcdc9f02dee73a42f8da510559fc5ad98011a053ef4
-
Size
1.2MB
-
MD5
004fe49453b7a12a1087ca4fb0baff26
-
SHA1
0b8dea5738277fb6eaf7256e69aa28cae5ff17c7
-
SHA256
51410421875a08ce24b7cfcdc9f02dee73a42f8da510559fc5ad98011a053ef4
-
SHA512
bd10cf487f6f9bca5fcd9cdbc6ae1f6470842cd5678b6a2b135af000a64c6c12dd32452b666c3bab27002671ff42ad7e2a738a831babddf0593a60a48dd38d55
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Suspicious use of SetThreadContext
-