General
-
Target
1464329747969616965cdc7dab631bd1bde38e09d9fb0c55ce2b2dbee5a4420a
-
Size
1.1MB
-
Sample
230514-y4wx5sfg3w
-
MD5
dd5839e7b896ff9e33b78aa2a2ad7bb7
-
SHA1
3936cfe4d9b24e953bdf52cbc019e599461c58d1
-
SHA256
1464329747969616965cdc7dab631bd1bde38e09d9fb0c55ce2b2dbee5a4420a
-
SHA512
b1e37131ca476dfab855287e6bb131a976a250fa2b1fa7bbe7014b94ab343da819e941c750e76603d3fc5cc7ad19decf71c6395e13a9d90cd0982ba2da69e504
-
SSDEEP
24576:GyjAqGysuaFEDRsFLo975HM1CcHxkaA/Xw4:V83uBQUdJNcHxklX
Static task
static1
Behavioral task
behavioral1
Sample
1464329747969616965cdc7dab631bd1bde38e09d9fb0c55ce2b2dbee5a4420a.exe
Resource
win10-20230220-en
Malware Config
Extracted
redline
linda
185.161.248.75:4132
-
auth_value
21cdc21d041667b9c1679f88a1146770
Targets
-
-
Target
1464329747969616965cdc7dab631bd1bde38e09d9fb0c55ce2b2dbee5a4420a
-
Size
1.1MB
-
MD5
dd5839e7b896ff9e33b78aa2a2ad7bb7
-
SHA1
3936cfe4d9b24e953bdf52cbc019e599461c58d1
-
SHA256
1464329747969616965cdc7dab631bd1bde38e09d9fb0c55ce2b2dbee5a4420a
-
SHA512
b1e37131ca476dfab855287e6bb131a976a250fa2b1fa7bbe7014b94ab343da819e941c750e76603d3fc5cc7ad19decf71c6395e13a9d90cd0982ba2da69e504
-
SSDEEP
24576:GyjAqGysuaFEDRsFLo975HM1CcHxkaA/Xw4:V83uBQUdJNcHxklX
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
Executes dropped EXE
-
Adds Run key to start application
-