General
-
Target
ТЗ Grow Food для рекламной интеграции.pdf.7z
-
Size
223KB
-
Sample
220603-dg5asabhak
-
MD5
38484f3492dd23bd439ba619c7a4a2c1
-
SHA1
2eebcf82ca2963f356206061e2e05797de78e212
-
SHA256
e2b02ba3ac1baf80a58064dccc322f80006166eda195e39fcc7693ddb29baa50
-
SHA512
b2a035b54af463d6e6d1a69b7cbdfcb33d171495f7509834f7886e6f666a542706a19c0619ea8de3853ddc1021c87d3d6e86711683bb88e069dbcf5aac0b68f5
Static task
static1
Behavioral task
behavioral1
Sample
?? Grow Food ??? ????????? ??????????.pdf.exe
Resource
win10v2004-20220414-en
Malware Config
Extracted
redline
meta1
168.119.106.211:64746
-
auth_value
c58c58849e734196e515b3cd2acd1ae6
Targets
-
-
Target
?? Grow Food ??? ????????? ??????????.pdf.exe
-
Size
653.5MB
-
MD5
51fce027c74f98cc245cdb9333da3c0f
-
SHA1
ad02a6a560c63c1e8f353a1d341076c836a7c042
-
SHA256
fd91e0b05937d9de74050213bfc37045ae3c7e024eecf5c7776f5ba57a349f57
-
SHA512
b2c7dfc04d091e5320c446436a48dc5ae2b9c5fcb9f30c580588a587863be83b2dbfa8f80db79fb94f635d25ad34f875964b6c52640207cfcb32d0c0e594be62
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
Suspicious use of SetThreadContext
-