General
-
Target
x0728346.exe
-
Size
757KB
-
Sample
230714-e9t6yscb72
-
MD5
f09c050e5a07baffafaa6c0408160f29
-
SHA1
435cd66017633f6eb58b49aafd30350f8f5ce459
-
SHA256
fc1cc43dcb15f9e354130732c1c4ef06556b8236d77c240cd95c73523b158534
-
SHA512
82335d44fc1975cc88c1a858cfcb8023b973d7032fcd75f7764d0b2ce6b5da227d153380118192935650833a9fe771cf3f77147845ff10521277982de5602b84
-
SSDEEP
12288:NMrIy90wW3+TQdDROqM9bhmQY6wbz9DtzdSXvtDELqmh9Im7eXZKWs88M3toN:Vy9W3+TiOq2bwBjqmh9Im8gRN
Malware Config
Extracted
redline
masha
77.91.68.48:19071
-
auth_value
55b9b39a0dae383196a4b8d79e5bb805
Targets
-
-
Target
x0728346.exe
-
Size
757KB
-
MD5
f09c050e5a07baffafaa6c0408160f29
-
SHA1
435cd66017633f6eb58b49aafd30350f8f5ce459
-
SHA256
fc1cc43dcb15f9e354130732c1c4ef06556b8236d77c240cd95c73523b158534
-
SHA512
82335d44fc1975cc88c1a858cfcb8023b973d7032fcd75f7764d0b2ce6b5da227d153380118192935650833a9fe771cf3f77147845ff10521277982de5602b84
-
SSDEEP
12288:NMrIy90wW3+TQdDROqM9bhmQY6wbz9DtzdSXvtDELqmh9Im7eXZKWs88M3toN:Vy9W3+TiOq2bwBjqmh9Im8gRN
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-