General
-
Target
08250199.exe
-
Size
402KB
-
Sample
230623-jhfxgaed9y
-
MD5
9cddcb52e78bc6a8efe93cd54ef80c27
-
SHA1
937eb2b28657dff61c46b37941ad81b7a6442767
-
SHA256
0f835436b44204e74e8622803aaaf44e2e711c5463910803b108edf0ffbb4c33
-
SHA512
872a4f2693faa59957cec41f27734c933d3168df66a69a329645044e102911b88b2cf5a260ba84f831404d835d9412c700dc246170969ceb3cda087beb0ee5ca
-
SSDEEP
6144:ZbKQ6E9MqZ/dRAf9AJ1thuYU1C1AOwRgdTt82OqJ5tAu/YO93IY:ZbKQt93ZlRAf9A58gFt82O25tx/0
Static task
static1
Behavioral task
behavioral1
Sample
08250199.exe
Resource
win7-20230621-en
Malware Config
Extracted
redline
furga
83.97.73.128:19071
-
auth_value
1b7af6db7a79a3475798fcf494818be7
Targets
-
-
Target
08250199.exe
-
Size
402KB
-
MD5
9cddcb52e78bc6a8efe93cd54ef80c27
-
SHA1
937eb2b28657dff61c46b37941ad81b7a6442767
-
SHA256
0f835436b44204e74e8622803aaaf44e2e711c5463910803b108edf0ffbb4c33
-
SHA512
872a4f2693faa59957cec41f27734c933d3168df66a69a329645044e102911b88b2cf5a260ba84f831404d835d9412c700dc246170969ceb3cda087beb0ee5ca
-
SSDEEP
6144:ZbKQ6E9MqZ/dRAf9AJ1thuYU1C1AOwRgdTt82OqJ5tAu/YO93IY:ZbKQt93ZlRAf9A58gFt82O25tx/0
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-