General
-
Target
81548f7373960e31cdd8d30de11cf2d1372ee5495dbcfafdfe9a7c33e8186cdf
-
Size
844KB
-
Sample
230411-ny2lbsdh4z
-
MD5
76f2e30577cfe1aa87819f82a638fc8d
-
SHA1
8f1818e149b9792e6642b22aae1491aef7df3489
-
SHA256
81548f7373960e31cdd8d30de11cf2d1372ee5495dbcfafdfe9a7c33e8186cdf
-
SHA512
d23e368ff240c8ead2656744160465a28e98a28c9dc9dcc8947d5d99cc4dbb6e04fd102ff11510cd4a9d797a1d106523e922e6ad9f814d2e00f8db588f5bae13
-
SSDEEP
24576:SyIZCebd3Z5SrMSgDYKRRrmXefL2QKB86DzEOX4UX79K+uH:5IAeNZTDtzrmuu86DzzVu
Static task
static1
Behavioral task
behavioral1
Sample
81548f7373960e31cdd8d30de11cf2d1372ee5495dbcfafdfe9a7c33e8186cdf.exe
Resource
win10-20230220-en
Malware Config
Extracted
redline
rosn
176.113.115.145:4125
-
auth_value
050a19e1db4d0024b0f23b37dcf961f4
Targets
-
-
Target
81548f7373960e31cdd8d30de11cf2d1372ee5495dbcfafdfe9a7c33e8186cdf
-
Size
844KB
-
MD5
76f2e30577cfe1aa87819f82a638fc8d
-
SHA1
8f1818e149b9792e6642b22aae1491aef7df3489
-
SHA256
81548f7373960e31cdd8d30de11cf2d1372ee5495dbcfafdfe9a7c33e8186cdf
-
SHA512
d23e368ff240c8ead2656744160465a28e98a28c9dc9dcc8947d5d99cc4dbb6e04fd102ff11510cd4a9d797a1d106523e922e6ad9f814d2e00f8db588f5bae13
-
SSDEEP
24576:SyIZCebd3Z5SrMSgDYKRRrmXefL2QKB86DzEOX4UX79K+uH:5IAeNZTDtzrmuu86DzzVu
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
Executes dropped EXE
-
Adds Run key to start application
-