General
-
Target
a9542676ee9a25c64a9fec1466664511f6059b51d8192025f95855b02ffe9620
-
Size
1.5MB
-
Sample
230103-f9shssdd61
-
MD5
5ecd23eace00b49117b0d99a86ef57ad
-
SHA1
7711fa1dd10e45dc2d85d2785aabd24d0fd811f3
-
SHA256
a9542676ee9a25c64a9fec1466664511f6059b51d8192025f95855b02ffe9620
-
SHA512
4e098d6276f5c7f04a2c9d2fa3cd06e4f28c70669d82c352a4da851b6cff66efb8a9c91fb9879c190a5f1798dcebaf7b5499dec84de7f59dc56f3f9b7d45719d
-
SSDEEP
24576:D71YR9epjTBP84XytT3mmZiBc7OxrAZ7sDU4UDTKEtegBSyS2CmWMLBk44:C9epPNuDABWOGqIFmwepH44
Static task
static1
Behavioral task
behavioral1
Sample
a9542676ee9a25c64a9fec1466664511f6059b51d8192025f95855b02ffe9620.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
a9542676ee9a25c64a9fec1466664511f6059b51d8192025f95855b02ffe9620.exe
Resource
win10v2004-20220812-en
Malware Config
Extracted
redline
1310
79.137.192.57:48771
-
auth_value
feb5f5c29913f32658637e553762a40e
Targets
-
-
Target
a9542676ee9a25c64a9fec1466664511f6059b51d8192025f95855b02ffe9620
-
Size
1.5MB
-
MD5
5ecd23eace00b49117b0d99a86ef57ad
-
SHA1
7711fa1dd10e45dc2d85d2785aabd24d0fd811f3
-
SHA256
a9542676ee9a25c64a9fec1466664511f6059b51d8192025f95855b02ffe9620
-
SHA512
4e098d6276f5c7f04a2c9d2fa3cd06e4f28c70669d82c352a4da851b6cff66efb8a9c91fb9879c190a5f1798dcebaf7b5499dec84de7f59dc56f3f9b7d45719d
-
SSDEEP
24576:D71YR9epjTBP84XytT3mmZiBc7OxrAZ7sDU4UDTKEtegBSyS2CmWMLBk44:C9epPNuDABWOGqIFmwepH44
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
Suspicious use of SetThreadContext
-