General
-
Target
1c4d947a8e0971f11b30144b69103d486158bbb25cbd74480fa85b3c1d1243b6
-
Size
662KB
-
Sample
221130-rxxgrshd73
-
MD5
dbad025ca770960673df7cd99a452675
-
SHA1
2dbfbbf2053213abe25619350049ec305bb58179
-
SHA256
1c4d947a8e0971f11b30144b69103d486158bbb25cbd74480fa85b3c1d1243b6
-
SHA512
1cbcfd922f0b37fb2bf1584b048d11dc69b8ca6b0f6122f5172f6fdd03094706d56781e9ffdb58e6a6322deecf7f760212ddfc95d9191a553fb4da2da2eeefc2
-
SSDEEP
12288:kE7lFkUMVdmvoLXJP6e8TZuSxAThGDwQjgr9eNQr8TtR+fuTBK+Uf11+y2Dul3I:Cmv0XJPrQASxtjw9eQA
Static task
static1
Behavioral task
behavioral1
Sample
1c4d947a8e0971f11b30144b69103d486158bbb25cbd74480fa85b3c1d1243b6.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
1c4d947a8e0971f11b30144b69103d486158bbb25cbd74480fa85b3c1d1243b6.exe
Resource
win10v2004-20220812-en
Malware Config
Extracted
redline
Cheats
86.105.252.11:30003
Targets
-
-
Target
1c4d947a8e0971f11b30144b69103d486158bbb25cbd74480fa85b3c1d1243b6
-
Size
662KB
-
MD5
dbad025ca770960673df7cd99a452675
-
SHA1
2dbfbbf2053213abe25619350049ec305bb58179
-
SHA256
1c4d947a8e0971f11b30144b69103d486158bbb25cbd74480fa85b3c1d1243b6
-
SHA512
1cbcfd922f0b37fb2bf1584b048d11dc69b8ca6b0f6122f5172f6fdd03094706d56781e9ffdb58e6a6322deecf7f760212ddfc95d9191a553fb4da2da2eeefc2
-
SSDEEP
12288:kE7lFkUMVdmvoLXJP6e8TZuSxAThGDwQjgr9eNQr8TtR+fuTBK+Uf11+y2Dul3I:Cmv0XJPrQASxtjw9eQA
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
Suspicious use of SetThreadContext
-