General
-
Target
file.exe
-
Size
393KB
-
Sample
230201-jfs41scd49
-
MD5
a746db0666bd903ca4f7f4307eef001f
-
SHA1
4e91316e4e0a56715a5c490e6aa6caa884be7e9f
-
SHA256
b7faa830bc27b78d800f502287390de670583aede841d9b6579b3aa311718d22
-
SHA512
e54217f2852ce1f476a748135779363ef2ab7835d7abab45b5c6a69bef5229c0f29db87c67626c8663d3e4851f605b63baf769cf8cab4e3296b985f1f2a6a85d
-
SSDEEP
6144:aZLzCvNWEqqymJLQV5ARBYs+Ti94S+Elea2s1tGCGFTPJwIqA7KQu55u:qnQNkgJkkcT22+tGxZKd57/u
Static task
static1
Behavioral task
behavioral1
Sample
file.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
file.exe
Resource
win10v2004-20221111-en
Malware Config
Extracted
redline
1
138.124.183.137:48862
-
auth_value
63347a605fdd4b113180332821529963
Targets
-
-
Target
file.exe
-
Size
393KB
-
MD5
a746db0666bd903ca4f7f4307eef001f
-
SHA1
4e91316e4e0a56715a5c490e6aa6caa884be7e9f
-
SHA256
b7faa830bc27b78d800f502287390de670583aede841d9b6579b3aa311718d22
-
SHA512
e54217f2852ce1f476a748135779363ef2ab7835d7abab45b5c6a69bef5229c0f29db87c67626c8663d3e4851f605b63baf769cf8cab4e3296b985f1f2a6a85d
-
SSDEEP
6144:aZLzCvNWEqqymJLQV5ARBYs+Ti94S+Elea2s1tGCGFTPJwIqA7KQu55u:qnQNkgJkkcT22+tGxZKd57/u
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-