Overview

overview

10

Static

static

3

rk344672.exe

windows7-x64

1

rk344672.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    rk344672.exe.bin

  • Size

    341KB

  • Sample

    230505-zq4lhagf91

  • MD5

    88b1bb67fb1bfe19a716995edec097aa

  • SHA1

    af1c148081dfba5d6a3d7c82628f370794501b7b

  • SHA256

    0cfa2bd206a874404bf7ee8f0afee5f64b512b8a598439e2c2effbcd4dd18b93

  • SHA512

    1eb466e0b4e6cb2a85bd5a95c44032cd09de8c379366a7b9a5e4b4053f136c43ee3892a3e3d3bf6cde8db28985a3c78c92a89c3655f0516bb1c9c58d1fc5a328

  • SSDEEP

    6144:BYhZIJqcfqBbZVj2UVir0JNciLlhNcTy3mPY/1Fyj:qfUqcfqBzj28ir0JBh2qmQ/Pyj

Score
10/10
redlineinfostealerstealer

Malware Config

Targets

    • Target

      rk344672.exe.bin

    • Size

      341KB

    • MD5

      88b1bb67fb1bfe19a716995edec097aa

    • SHA1

      af1c148081dfba5d6a3d7c82628f370794501b7b

    • SHA256

      0cfa2bd206a874404bf7ee8f0afee5f64b512b8a598439e2c2effbcd4dd18b93

    • SHA512

      1eb466e0b4e6cb2a85bd5a95c44032cd09de8c379366a7b9a5e4b4053f136c43ee3892a3e3d3bf6cde8db28985a3c78c92a89c3655f0516bb1c9c58d1fc5a328

    • SSDEEP

      6144:BYhZIJqcfqBbZVj2UVir0JNciLlhNcTy3mPY/1Fyj:qfUqcfqBzj28ir0JBh2qmQ/Pyj

    Score
    10/10
    redlineinfostealerstealer

    • Detects Redline Stealer samples

      This rule detects the presence of Redline Stealer samples based on their unique strings.

      stealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks