General
-
Target
payload.exe
-
Size
162KB
-
Sample
220707-kv8cxshhcm
-
MD5
672ec339d7ced6972fae29cae0898e48
-
SHA1
f94c92e0aa4d7bcfd86aa6cde08a9ff4f00e8c00
-
SHA256
c9e5185e53d9f7b993745c3d404f46785becfb3cb488bb176572a8370315ac81
-
SHA512
d7a743951883c080805a1e3e34a4d9aba30906ee5b230e98c66191a3d3a273ba2db504398688fd934f57bd10fdfc0d0d670790e8ae979b0ec946aa3a6264f7ed
Behavioral task
behavioral1
Sample
payload.exe
Resource
win7-20220414-en
Behavioral task
behavioral2
Sample
payload.exe
Resource
win10v2004-20220414-en
Malware Config
Extracted
redline
Krist
193.106.191.81:23196
-
auth_value
7d4ae8db7dd902559e9da29b75799e68
Targets
-
-
Target
payload.exe
-
Size
162KB
-
MD5
672ec339d7ced6972fae29cae0898e48
-
SHA1
f94c92e0aa4d7bcfd86aa6cde08a9ff4f00e8c00
-
SHA256
c9e5185e53d9f7b993745c3d404f46785becfb3cb488bb176572a8370315ac81
-
SHA512
d7a743951883c080805a1e3e34a4d9aba30906ee5b230e98c66191a3d3a273ba2db504398688fd934f57bd10fdfc0d0d670790e8ae979b0ec946aa3a6264f7ed
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-