General
-
Target
8bb2f1b6ab119fe6fc0293fa4e325c01dbdd79a5dcb2b73db5d151217dba7c0e.zip
-
Size
257KB
-
Sample
230308-qblbyahh81
-
MD5
168681b51b4a464b563cecce7822e40f
-
SHA1
ee269fa40fce0a0e5e5dbc3187fd602a386a99a7
-
SHA256
4aa14e61b9acc3dff5c01b45337744f0e22683c36122034bdd861562588c2ea7
-
SHA512
8594837b4bfed3b85aa8c26277e82892bedb1b0f101339819ecdd0937424c8e8c40b9868c677be9e06b32552a4942f73ead7028183f8b61bd5368ecde4302b94
-
SSDEEP
6144:lZrJ05lVgWm8BY/BgxO2C+3sV0UcvRlwNy34/sYszy:lZl05tXBQ6xf3C0nZ2YxW
Static task
static1
Behavioral task
behavioral1
Sample
8bb2f1b6ab119fe6fc0293fa4e325c01dbdd79a5dcb2b73db5d151217dba7c0e.exe
Resource
win7-20230220-en
Behavioral task
behavioral2
Sample
8bb2f1b6ab119fe6fc0293fa4e325c01dbdd79a5dcb2b73db5d151217dba7c0e.exe
Resource
win10v2004-20230220-en
Malware Config
Extracted
redline
fud
193.233.20.27:4123
-
auth_value
cddc991efd6918ad5321d80dac884b40
Targets
-
-
Target
8bb2f1b6ab119fe6fc0293fa4e325c01dbdd79a5dcb2b73db5d151217dba7c0e.exe
-
Size
379KB
-
MD5
078594e2ec8f1b2481d493ca8b67af44
-
SHA1
d961fe2be92902c074b04272f277320fa994490a
-
SHA256
8bb2f1b6ab119fe6fc0293fa4e325c01dbdd79a5dcb2b73db5d151217dba7c0e
-
SHA512
0d6610de14191c8f5491a80cc8f50fc70011636e35b6b30295abcba780879b882e70dbb9ca33be81ad697bf1cdee7b68a1474b20968db6fc1d71e2e8cce227c6
-
SSDEEP
6144:deG3L85kZb5aR5MO+eul+xtlVsQbz7DptVuBTKreZv/74DYTP4eUM:YwQ5kZsTMO+kbuo7VcTKiZX6YTUM
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-