General
-
Target
bcadc49beaceeb27068906d6673923c24c12ff73914d6a5ebb66e054565f41fe
-
Size
919KB
-
Sample
230615-y9ntqaba5t
-
MD5
1d056a903844e38709bcc3ff46d48571
-
SHA1
e901806e95a996a32aeb1c9c9a2dab09fbdc1c7a
-
SHA256
bcadc49beaceeb27068906d6673923c24c12ff73914d6a5ebb66e054565f41fe
-
SHA512
59d799998c4ac7c398c2831e02a405b3e3ff3ec70fcbaf18848ff924e4fac70b321b6e1436f6dfbf0158e3fac327b4bcf19a2660aa3262bedf10f35091e73bc3
-
SSDEEP
24576:0NaBxCytrj+nMJlWqLKTQ0pa3r9aD0zWursFVhWE+M6PObbb1Fq3q9n6nZPt45cx:0NaBsytr9FLKTQ0pa5ax3VhWE+M6PObw
Static task
static1
Behavioral task
behavioral1
Sample
bcadc49beaceeb27068906d6673923c24c12ff73914d6a5ebb66e054565f41fe.exe
Resource
win10v2004-20230220-en
Malware Config
Extracted
redline
TORRENTOLD
amrican-sport-live-stream.cc:4581
-
auth_value
74e1b58bf920611f04c0e3919954fe05
Targets
-
-
Target
bcadc49beaceeb27068906d6673923c24c12ff73914d6a5ebb66e054565f41fe
-
Size
919KB
-
MD5
1d056a903844e38709bcc3ff46d48571
-
SHA1
e901806e95a996a32aeb1c9c9a2dab09fbdc1c7a
-
SHA256
bcadc49beaceeb27068906d6673923c24c12ff73914d6a5ebb66e054565f41fe
-
SHA512
59d799998c4ac7c398c2831e02a405b3e3ff3ec70fcbaf18848ff924e4fac70b321b6e1436f6dfbf0158e3fac327b4bcf19a2660aa3262bedf10f35091e73bc3
-
SSDEEP
24576:0NaBxCytrj+nMJlWqLKTQ0pa3r9aD0zWursFVhWE+M6PObbb1Fq3q9n6nZPt45cx:0NaBsytr9FLKTQ0pa5ax3VhWE+M6PObw
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
Suspicious use of SetThreadContext
-