General
-
Target
7b789842cbf26efdbe8a0c4d33a1745d.exe
-
Size
385KB
-
Sample
230404-edxxzaee21
-
MD5
7b789842cbf26efdbe8a0c4d33a1745d
-
SHA1
e588e03b71dfe85e4327cd663dcb55059ae0e96f
-
SHA256
e5feb52b6df5e2c861badea1ad91c4841a3c61478c8734c91e6941c8bc2f4be8
-
SHA512
95af6984d5ac980eb7915d7164a901bce6716b679e73be7ff8bc222d829ab2d794a7b92487bc205006a0512b49cb22d1a4ea4c3b739085a8ef41f58f971f640d
-
SSDEEP
6144:DZ0bnEWkGcIB06DWVcTD9icclND7ttBSkwavuozh3j2RvzlFOGwTfm:DZKnEWeIBvEcTEc8DDBPwDUivz3Im
Static task
static1
Behavioral task
behavioral1
Sample
7b789842cbf26efdbe8a0c4d33a1745d.exe
Resource
win7-20230220-en
Behavioral task
behavioral2
Sample
7b789842cbf26efdbe8a0c4d33a1745d.exe
Resource
win10v2004-20230220-en
Malware Config
Extracted
redline
Build1
185.189.151.109:36839
-
auth_value
d676f4d8230f2d1faff9a183479712d6
Targets
-
-
Target
7b789842cbf26efdbe8a0c4d33a1745d.exe
-
Size
385KB
-
MD5
7b789842cbf26efdbe8a0c4d33a1745d
-
SHA1
e588e03b71dfe85e4327cd663dcb55059ae0e96f
-
SHA256
e5feb52b6df5e2c861badea1ad91c4841a3c61478c8734c91e6941c8bc2f4be8
-
SHA512
95af6984d5ac980eb7915d7164a901bce6716b679e73be7ff8bc222d829ab2d794a7b92487bc205006a0512b49cb22d1a4ea4c3b739085a8ef41f58f971f640d
-
SSDEEP
6144:DZ0bnEWkGcIB06DWVcTD9icclND7ttBSkwavuozh3j2RvzlFOGwTfm:DZKnEWeIBvEcTEc8DDBPwDUivz3Im
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-