General
-
Target
file.exe
-
Size
355KB
-
Sample
230324-jm4jbsfb2t
-
MD5
562a9d80010a58ab0ce0a39caeeef5a3
-
SHA1
b193bbdae0985ed6d3d5bb6321669cb44e08d0a6
-
SHA256
a83205a714e50abb6f4aefef800f8da97239bdaf8b8331a6de3a498579f8fe6b
-
SHA512
ffd64cdd26712314bfbe2a3c2cdd3591b254d825aa2635059b5d31026006630998743d7a316f2f1cefd55d39cf1ac413052a2ac40c7add1bd6c13a66f2feeb87
-
SSDEEP
6144:SZZo2sL8q6JY46yv8CMSy8wRo2hz27YEVxuiGdLTIuLAWfkw2DAqF:Svo2sYq6JYQZMEL7tVxf8IuUTwd
Static task
static1
Behavioral task
behavioral1
Sample
file.exe
Resource
win7-20230220-en
Behavioral task
behavioral2
Sample
file.exe
Resource
win10v2004-20230220-en
Malware Config
Extracted
redline
dozk
91.215.85.15:25916
-
auth_value
9f1dc4ff242fb8b53742acae0ef96143
Targets
-
-
Target
file.exe
-
Size
355KB
-
MD5
562a9d80010a58ab0ce0a39caeeef5a3
-
SHA1
b193bbdae0985ed6d3d5bb6321669cb44e08d0a6
-
SHA256
a83205a714e50abb6f4aefef800f8da97239bdaf8b8331a6de3a498579f8fe6b
-
SHA512
ffd64cdd26712314bfbe2a3c2cdd3591b254d825aa2635059b5d31026006630998743d7a316f2f1cefd55d39cf1ac413052a2ac40c7add1bd6c13a66f2feeb87
-
SSDEEP
6144:SZZo2sL8q6JY46yv8CMSy8wRo2hz27YEVxuiGdLTIuLAWfkw2DAqF:Svo2sYq6JYQZMEL7tVxf8IuUTwd
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-