General
-
Target
4124523836eb073498d87136785b99e0a8fa7ff756c29b3daf8408cdbe42390b
-
Size
1.1MB
-
Sample
230514-2n92lsgb41
-
MD5
f96961ab1eae669a68c48c25a5c30634
-
SHA1
4077f5bc1ba3d1ecee7463474a1d21e3f40de524
-
SHA256
4124523836eb073498d87136785b99e0a8fa7ff756c29b3daf8408cdbe42390b
-
SHA512
40362e26dd1ab56b71ea45c4bb218dccc01bfc0f7a9897f04b040626c74263a3fbd9b0b86b9d139f6ff54b7b4b926e517674c4faadf714f684aee4d08af804a2
-
SSDEEP
24576:Sy8UWSVOlW4Mg2qZFGQcAUFUCRPyVmp+bdMCAcr+KZsC13:58U1Ol2gRnGQcAWRPRmXqKr
Static task
static1
Behavioral task
behavioral1
Sample
4124523836eb073498d87136785b99e0a8fa7ff756c29b3daf8408cdbe42390b.exe
Resource
win10-20230220-en
Malware Config
Extracted
redline
linda
185.161.248.75:4132
-
auth_value
21cdc21d041667b9c1679f88a1146770
Targets
-
-
Target
4124523836eb073498d87136785b99e0a8fa7ff756c29b3daf8408cdbe42390b
-
Size
1.1MB
-
MD5
f96961ab1eae669a68c48c25a5c30634
-
SHA1
4077f5bc1ba3d1ecee7463474a1d21e3f40de524
-
SHA256
4124523836eb073498d87136785b99e0a8fa7ff756c29b3daf8408cdbe42390b
-
SHA512
40362e26dd1ab56b71ea45c4bb218dccc01bfc0f7a9897f04b040626c74263a3fbd9b0b86b9d139f6ff54b7b4b926e517674c4faadf714f684aee4d08af804a2
-
SSDEEP
24576:Sy8UWSVOlW4Mg2qZFGQcAUFUCRPyVmp+bdMCAcr+KZsC13:58U1Ol2gRnGQcAWRPRmXqKr
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
Executes dropped EXE
-
Adds Run key to start application
-