General
-
Target
3333e40e61ff33675c26e7a712a7808d.exe
-
Size
399KB
-
Sample
220805-t7mfnacfam
-
MD5
3333e40e61ff33675c26e7a712a7808d
-
SHA1
7e314834674c7bf514f68790a0e88b014e9115a4
-
SHA256
a4bac13abfd454b26ddd32a25d87080e7e4bf8b6a9e85e7e91736b3f944565c3
-
SHA512
c9774df3adaa867ad7aee060db9451091686725570834eb1a06473d56f051fd40034471c8e76ad9d993b6e43d209bcc3704eed27b9d01a3d208ddd40bead2ec2
Static task
static1
Behavioral task
behavioral1
Sample
3333e40e61ff33675c26e7a712a7808d.exe
Resource
win7-20220715-en
Malware Config
Extracted
redline
AF2
stcontact.top:80
-
auth_value
4d729a2faecb406a0eb1d6fcf30432fa
Targets
-
-
Target
3333e40e61ff33675c26e7a712a7808d.exe
-
Size
399KB
-
MD5
3333e40e61ff33675c26e7a712a7808d
-
SHA1
7e314834674c7bf514f68790a0e88b014e9115a4
-
SHA256
a4bac13abfd454b26ddd32a25d87080e7e4bf8b6a9e85e7e91736b3f944565c3
-
SHA512
c9774df3adaa867ad7aee060db9451091686725570834eb1a06473d56f051fd40034471c8e76ad9d993b6e43d209bcc3704eed27b9d01a3d208ddd40bead2ec2
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
Accesses cryptocurrency files/wallets, possible credential harvesting
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-