General
-
Target
528-208-0x00000000032E0000-0x0000000003302000-memory.dmp
-
Size
136KB
-
Sample
220824-gncqwshbcn
-
MD5
75518301077a2d8c7d4feef44f2e5351
-
SHA1
3f9029cbad7560a18143a359bf5ceee2ce50600a
-
SHA256
749e1da0fb66f171a7d28af09c0d8eafd791900e54f7b6f719b49e3ff194f5ad
-
SHA512
9da52eec3285b7ecf04601c5840a13ef8e2d8e3da1c176718408228e3c6b62d6444c2009b4412ea0f7b9a7bf13efb255342d897975a42cf9b4900d20b4969780
-
SSDEEP
3072:Sia0DxF//28tuuoq6AIL6X68OwzyG0V/q1g:SixDx9u8t9XO0zyG+/q
Behavioral task
behavioral1
Sample
528-208-0x00000000032E0000-0x0000000003302000-memory.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
528-208-0x00000000032E0000-0x0000000003302000-memory.exe
Resource
win10v2004-20220812-en
Malware Config
Extracted
redline
she
135.181.129.119:4805
-
auth_value
b69102cdbd4afe2d3159f88fb6dac731
Targets
-
-
Target
528-208-0x00000000032E0000-0x0000000003302000-memory.dmp
-
Size
136KB
-
MD5
75518301077a2d8c7d4feef44f2e5351
-
SHA1
3f9029cbad7560a18143a359bf5ceee2ce50600a
-
SHA256
749e1da0fb66f171a7d28af09c0d8eafd791900e54f7b6f719b49e3ff194f5ad
-
SHA512
9da52eec3285b7ecf04601c5840a13ef8e2d8e3da1c176718408228e3c6b62d6444c2009b4412ea0f7b9a7bf13efb255342d897975a42cf9b4900d20b4969780
-
SSDEEP
3072:Sia0DxF//28tuuoq6AIL6X68OwzyG0V/q1g:SixDx9u8t9XO0zyG+/q
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-