General
-
Target
9debb6a1d3f36552f149279194741d8528ffd89c7f18301c5fa5cdea6b30d563
-
Size
1.1MB
-
Sample
230514-znjhjsde83
-
MD5
4e7c4cfc1287f62bf843a394051c836e
-
SHA1
841942a2263966de255623f4a2b59f9a94002fde
-
SHA256
9debb6a1d3f36552f149279194741d8528ffd89c7f18301c5fa5cdea6b30d563
-
SHA512
6a1289590598c15c62950b9a3f2893d8c42303f4dd4608a80dccd74e3896f3a1a7df089ab4706b800adf0b141a9c4ae7beedacf1b583cf331d4eca845a409999
-
SSDEEP
24576:hyRBHIMRS4Ie1QWXqM16u/nwOEogzdRUr:UrRNIe7qTu/nwOEld
Static task
static1
Behavioral task
behavioral1
Sample
9debb6a1d3f36552f149279194741d8528ffd89c7f18301c5fa5cdea6b30d563.exe
Resource
win10-20230220-en
Malware Config
Extracted
redline
linda
185.161.248.75:4132
-
auth_value
21cdc21d041667b9c1679f88a1146770
Targets
-
-
Target
9debb6a1d3f36552f149279194741d8528ffd89c7f18301c5fa5cdea6b30d563
-
Size
1.1MB
-
MD5
4e7c4cfc1287f62bf843a394051c836e
-
SHA1
841942a2263966de255623f4a2b59f9a94002fde
-
SHA256
9debb6a1d3f36552f149279194741d8528ffd89c7f18301c5fa5cdea6b30d563
-
SHA512
6a1289590598c15c62950b9a3f2893d8c42303f4dd4608a80dccd74e3896f3a1a7df089ab4706b800adf0b141a9c4ae7beedacf1b583cf331d4eca845a409999
-
SSDEEP
24576:hyRBHIMRS4Ie1QWXqM16u/nwOEogzdRUr:UrRNIe7qTu/nwOEld
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
Executes dropped EXE
-
Adds Run key to start application
-