General
-
Target
6150810b4e431d83eee91e479ca2d066.exe
-
Size
337KB
-
Sample
230203-yn9jasec91
-
MD5
6150810b4e431d83eee91e479ca2d066
-
SHA1
743a3c7a2807a5df285bae8fa8151e6c182945dc
-
SHA256
af7d617cb4151d5e372d775b98fa96038cd317d1bf73bee6481987bdaf0aa1fb
-
SHA512
d734c075aa4eb8f4e2610ea8efc8a868741f340c92711c6475afb9bda88a0affc5b88156dead1157c4904355d90b8bec7c7181c13966b83b7e192b139b6dda04
-
SSDEEP
6144:4hEN7+Lp0yN90QEyh7FDDiLg3bhhQrD8kUgLzx1lXcV3mixJyJj2LM:4G7/y90sVVWLche/mGtmWiO5W
Static task
static1
Behavioral task
behavioral1
Sample
6150810b4e431d83eee91e479ca2d066.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
6150810b4e431d83eee91e479ca2d066.exe
Resource
win10v2004-20220812-en
Malware Config
Extracted
redline
france
193.233.20.5:4136
-
auth_value
827023aa27bcc1cc2382e4d111feec6f
Targets
-
-
Target
6150810b4e431d83eee91e479ca2d066.exe
-
Size
337KB
-
MD5
6150810b4e431d83eee91e479ca2d066
-
SHA1
743a3c7a2807a5df285bae8fa8151e6c182945dc
-
SHA256
af7d617cb4151d5e372d775b98fa96038cd317d1bf73bee6481987bdaf0aa1fb
-
SHA512
d734c075aa4eb8f4e2610ea8efc8a868741f340c92711c6475afb9bda88a0affc5b88156dead1157c4904355d90b8bec7c7181c13966b83b7e192b139b6dda04
-
SSDEEP
6144:4hEN7+Lp0yN90QEyh7FDDiLg3bhhQrD8kUgLzx1lXcV3mixJyJj2LM:4G7/y90sVVWLche/mGtmWiO5W
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-