General
-
Target
test.zip
-
Size
61KB
-
Sample
230601-rqey5sef78
-
MD5
511b0ce1997c94f44bbbc4f17cbc6afe
-
SHA1
1d4c09e55b9d6aa44830af3c0f4d5732ab60451e
-
SHA256
bf0e0d3a9bfde1fadc84bfc94b8bc61b76b476eea4e3d3388038c0b80109079b
-
SHA512
848c3ece3cd71a2f5bb754b11d89b193b226fcf36e6b071f2f9c6d9ac16fd43a5b3d20a0ef1d607ce8b0201bf723b8aee854d9dd52bbd9d4fe7665c3fb207c9c
-
SSDEEP
1536:FmiS1tTzIKQ+r37Iv84nD9n9vcRHCPR+RQAMN8B4l:FmipKQ+r3sbpnNRM1B6
Behavioral task
behavioral1
Sample
400000.vbc.exe
Resource
win7-20230220-en
Behavioral task
behavioral2
Sample
400000.vbc.exe
Resource
win10v2004-20230220-en
Malware Config
Extracted
redline
X
5.161.205.68:24668
-
auth_value
fe40c225330fc1a0dcb6cd2b4f18ccce
Targets
-
-
Target
400000.vbc.exe
-
Size
168KB
-
MD5
48aa4939874074d2463058d9cee0e932
-
SHA1
6ed8653b27d91aa88cfd61d337dd462f141a52f7
-
SHA256
118e7dcc6dce52bb31b5c9ee118e59feca65ad20225e36939f207a9d2d0fd698
-
SHA512
b08814e2b46ed6149b94236b4c83d2255eda90ff98c773fca0b629fd4c735eced121dff24a10ad6112e1185c35e538e7d5835d666ed708534956ca0f9b4f96d2
-
SSDEEP
1536:x42+kLqlVZRGWpUibgrFEm8nzJyYS4TGqVsbuPRqHXHo6lIE/83wYkA8e8hM:x/RgAEXAYSpqVkU6XHo6lIE/u8e8hM
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-