General
-
Target
7601726164.zip
-
Size
870KB
-
Sample
220624-s9azzagaa8
-
MD5
107c6e93baafdd6b87ffe81424273450
-
SHA1
3bb05d189777147f3f7ac1ad298485926e14e79e
-
SHA256
c0f013c38ae330b1c1eccca933a463558f69a3aed67b3b9d902bfd3611cbf105
-
SHA512
789d0c569203884ddbd09701991cde869618b1ae6a9bf9d28e4eadb4dc0e9cfba9499d3aa6988daf0bc4b219c8358759f25125e7e1f18b683be4b617549e3794
Static task
static1
Behavioral task
behavioral1
Sample
509f6bb22524158322b48975cd1bb634bc0d9a460389565296b640f62c31cdd7.exe
Resource
win7-20220414-en
Behavioral task
behavioral2
Sample
509f6bb22524158322b48975cd1bb634bc0d9a460389565296b640f62c31cdd7.exe
Resource
win10v2004-20220414-en
Malware Config
Extracted
redline
1
denverbbq.net:80
Targets
-
-
Target
509f6bb22524158322b48975cd1bb634bc0d9a460389565296b640f62c31cdd7
-
Size
2.3MB
-
MD5
addd93ff7bf2e53744e25b39e6057547
-
SHA1
b64ef50db800a0850a7fa89a7f5d13977ac3f1d3
-
SHA256
509f6bb22524158322b48975cd1bb634bc0d9a460389565296b640f62c31cdd7
-
SHA512
7cb1ad47627b2b5958ece2bf6d509acb89a62f0f0429f24b792701bd8986c3f77cf7ec126acad257ccce6965e77908a27e43620829927cc1b3032f9218756254
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Blocklisted process makes network request
-