General
-
Target
db399aedc2932f53c234871f6cf91631e09642cfd305fb40a061b732c714540d
-
Size
354KB
-
Sample
230731-tn7mgshd45
-
MD5
d93b2811d13da9c8e65fb9f6cc61518f
-
SHA1
b27248b3f8c77c13779e4f1e15f9e22a0cbe2e28
-
SHA256
db399aedc2932f53c234871f6cf91631e09642cfd305fb40a061b732c714540d
-
SHA512
4f90e6291c917c328bf0a4ae99da6e51a76371aa5d193a10cc6b3cd170d6db09e328a36b6ef247d49866caaeea7bfe21e9ffe628ec20bd84b4926060db08b2ce
-
SSDEEP
6144:FFCc1h5aRcakVDXgbqDHhv5g/YZhjsScXwaPdHcoH3j:FHfaRcakWbqLhv56uhjHaPd8
Static task
static1
Behavioral task
behavioral1
Sample
db399aedc2932f53c234871f6cf91631e09642cfd305fb40a061b732c714540d.exe
Resource
win10-20230703-en
Malware Config
Extracted
redline
@Germany
194.26.135.162:2920
-
auth_value
9d15d78194367a949e54a07d6ce02c62
Targets
-
-
Target
db399aedc2932f53c234871f6cf91631e09642cfd305fb40a061b732c714540d
-
Size
354KB
-
MD5
d93b2811d13da9c8e65fb9f6cc61518f
-
SHA1
b27248b3f8c77c13779e4f1e15f9e22a0cbe2e28
-
SHA256
db399aedc2932f53c234871f6cf91631e09642cfd305fb40a061b732c714540d
-
SHA512
4f90e6291c917c328bf0a4ae99da6e51a76371aa5d193a10cc6b3cd170d6db09e328a36b6ef247d49866caaeea7bfe21e9ffe628ec20bd84b4926060db08b2ce
-
SSDEEP
6144:FFCc1h5aRcakVDXgbqDHhv5g/YZhjsScXwaPdHcoH3j:FHfaRcakWbqLhv56uhjHaPd8
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-