General
-
Target
bcc002ad34a101e769e44a8c7beb2f3ddb4baa021ad98fcfa6fe8537ddd7e88b
-
Size
1.1MB
-
Sample
230514-1tsh3sdf96
-
MD5
5db6ea10b4754c85ee84f142ee2c0195
-
SHA1
337e48bf1dda272c9111ea7d746f976db82b38cd
-
SHA256
bcc002ad34a101e769e44a8c7beb2f3ddb4baa021ad98fcfa6fe8537ddd7e88b
-
SHA512
595c4f24e0c1c3a1d4e63a77a8a8841cd59197fe21ce0125f5a1eba89bfd9de99e5fa7cecaa1dd3bfd01d86da9f71aea7d1eaac644202bbb79eca568e91c70d2
-
SSDEEP
24576:UyNI4pqAVhCwpzOgDXLapdubemm9y2OBvI9E2JTi7g2EYgAsf5A:jNvqAmwTXGpdYrmYpw93TUZfgAs
Static task
static1
Behavioral task
behavioral1
Sample
bcc002ad34a101e769e44a8c7beb2f3ddb4baa021ad98fcfa6fe8537ddd7e88b.exe
Resource
win10-20230220-en
Malware Config
Extracted
redline
linda
185.161.248.75:4132
-
auth_value
21cdc21d041667b9c1679f88a1146770
Targets
-
-
Target
bcc002ad34a101e769e44a8c7beb2f3ddb4baa021ad98fcfa6fe8537ddd7e88b
-
Size
1.1MB
-
MD5
5db6ea10b4754c85ee84f142ee2c0195
-
SHA1
337e48bf1dda272c9111ea7d746f976db82b38cd
-
SHA256
bcc002ad34a101e769e44a8c7beb2f3ddb4baa021ad98fcfa6fe8537ddd7e88b
-
SHA512
595c4f24e0c1c3a1d4e63a77a8a8841cd59197fe21ce0125f5a1eba89bfd9de99e5fa7cecaa1dd3bfd01d86da9f71aea7d1eaac644202bbb79eca568e91c70d2
-
SSDEEP
24576:UyNI4pqAVhCwpzOgDXLapdubemm9y2OBvI9E2JTi7g2EYgAsf5A:jNvqAmwTXGpdYrmYpw93TUZfgAs
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
Executes dropped EXE
-
Adds Run key to start application
-