Analysis
-
max time kernel
100s -
max time network
105s -
platform
windows10-1703_x64 -
resource
win10-20230703-en -
resource tags
arch:x64arch:x86image:win10-20230703-enlocale:en-usos:windows10-1703-x64system -
submitted
07-08-2023 04:03
Static task
static1
Behavioral task
behavioral1
Sample
b3a40e3ebdcf07af5f7fa4e9549ee6ac0303d32723643b57afd3465aed29ec8e.exe
Resource
win10-20230703-en
General
-
Target
b3a40e3ebdcf07af5f7fa4e9549ee6ac0303d32723643b57afd3465aed29ec8e.exe
-
Size
384KB
-
MD5
deba0ee231fb3d38ba437a3f88810898
-
SHA1
8f8447693d9d01002a7bf13c7ce7f152db90b24b
-
SHA256
b3a40e3ebdcf07af5f7fa4e9549ee6ac0303d32723643b57afd3465aed29ec8e
-
SHA512
fd441f99061caa99e772e5544e199c1bf688677676521fb43d694ca799b5c9f7f5e6bdd2ee022a64677d08378166c1ce6b931a07399fc7faffa26161ff56ae48
-
SSDEEP
3072:uoND2JdY8WACi9jYCgaFabBiy48rA2SMTrGQe5Z+mxglw2exVopGaJFi1EZ1AI7W:zNYS8Wy9swFabN7GQer+9lw3a0Ax2x8
Malware Config
Extracted
redline
LogsDiller Cloud (TG: @logsdillabot)
51.89.201.49:6932
-
auth_value
3a050df92d0cf082b2cdaf87863616be
Signatures
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.