General
-
Target
8dca3a599a17e965df2f19ed90133e85c13f259c9cf3f0e1a4e22c4c129b03a0
-
Size
294KB
-
Sample
220928-nb1qhsfff9
-
MD5
a94848c19d127e5d21a7798922fcd2b4
-
SHA1
dca74e2ed1ef4c4ef06970b205f893e7914ef896
-
SHA256
8dca3a599a17e965df2f19ed90133e85c13f259c9cf3f0e1a4e22c4c129b03a0
-
SHA512
8087d0a02d9f754b8c3c1e0e81faeca71abe42b87091f5670713d36cd231e105f777db3b0cf06dd2f9dc527f8013893070d4684d9b1a3884b65f99f3233d7fb0
-
SSDEEP
6144:DjiY8GrWCrniq6mj/Ub+nAc0XuE9igavwVfIf:DZ11rnMmI+naXuDRf
Static task
static1
Behavioral task
behavioral1
Sample
8dca3a599a17e965df2f19ed90133e85c13f259c9cf3f0e1a4e22c4c129b03a0.exe
Resource
win10-20220812-en
Malware Config
Extracted
redline
insmix
jamesmillion2.xyz:9420
-
auth_value
f388a05524f756108c9e4b0f4c4bafb6
Extracted
systembc
141.98.82.229:4001
Targets
-
-
Target
8dca3a599a17e965df2f19ed90133e85c13f259c9cf3f0e1a4e22c4c129b03a0
-
Size
294KB
-
MD5
a94848c19d127e5d21a7798922fcd2b4
-
SHA1
dca74e2ed1ef4c4ef06970b205f893e7914ef896
-
SHA256
8dca3a599a17e965df2f19ed90133e85c13f259c9cf3f0e1a4e22c4c129b03a0
-
SHA512
8087d0a02d9f754b8c3c1e0e81faeca71abe42b87091f5670713d36cd231e105f777db3b0cf06dd2f9dc527f8013893070d4684d9b1a3884b65f99f3233d7fb0
-
SSDEEP
6144:DjiY8GrWCrniq6mj/Ub+nAc0XuE9igavwVfIf:DZ11rnMmI+naXuDRf
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
Downloads MZ/PE file
-
Executes dropped EXE
-
Deletes itself
-