General
-
Target
702e0bdf816627f08e9407768c67aa2752c45d1cbae791799875dea379ea11ba
-
Size
1.1MB
-
Sample
230514-kdxvvsbc36
-
MD5
41539b234f7ff433285f78ee2cc59725
-
SHA1
1e9cb8398b624d59b90e8298c59b7d44ffb8758c
-
SHA256
702e0bdf816627f08e9407768c67aa2752c45d1cbae791799875dea379ea11ba
-
SHA512
bcb8adc03106b1720b6d066a359e72e689bc30e1779309fa3d91534dd5785fa815fe65263e951b3da50d01a281d715cfe4bf0832cc08c015633d753e5989a423
-
SSDEEP
24576:iyHb4uIaNjVG+CI7CL1Dfb6ffjxigm+59hLayD4ZF:JHcghT57CRD4fjpX1ayD4Z
Static task
static1
Behavioral task
behavioral1
Sample
702e0bdf816627f08e9407768c67aa2752c45d1cbae791799875dea379ea11ba.exe
Resource
win10-20230220-en
Malware Config
Extracted
redline
luka
185.161.248.75:4132
-
auth_value
44560bcd37d6bf076da309730fdb519a
Targets
-
-
Target
702e0bdf816627f08e9407768c67aa2752c45d1cbae791799875dea379ea11ba
-
Size
1.1MB
-
MD5
41539b234f7ff433285f78ee2cc59725
-
SHA1
1e9cb8398b624d59b90e8298c59b7d44ffb8758c
-
SHA256
702e0bdf816627f08e9407768c67aa2752c45d1cbae791799875dea379ea11ba
-
SHA512
bcb8adc03106b1720b6d066a359e72e689bc30e1779309fa3d91534dd5785fa815fe65263e951b3da50d01a281d715cfe4bf0832cc08c015633d753e5989a423
-
SSDEEP
24576:iyHb4uIaNjVG+CI7CL1Dfb6ffjxigm+59hLayD4ZF:JHcghT57CRD4fjpX1ayD4Z
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
Executes dropped EXE
-
Adds Run key to start application
-