Analysis
-
max time kernel
122s -
max time network
127s -
platform
windows10-1703_x64 -
resource
win10-20230703-en -
resource tags
arch:x64arch:x86image:win10-20230703-enlocale:en-usos:windows10-1703-x64system -
submitted
07-08-2023 15:57
Static task
static1
Behavioral task
behavioral1
Sample
793c5832f007199c128dcb5a56bdb600d9edb69731fcf4769b102dcf4b434c13.exe
Resource
win10-20230703-en
General
-
Target
793c5832f007199c128dcb5a56bdb600d9edb69731fcf4769b102dcf4b434c13.exe
-
Size
312KB
-
MD5
d7f301c6cba9d944f7cd046297ecda42
-
SHA1
db6332ca315dd948f432cda88d5bc023706ba1af
-
SHA256
793c5832f007199c128dcb5a56bdb600d9edb69731fcf4769b102dcf4b434c13
-
SHA512
fd4b6758f19da28ebc4ebba9d8167decd3bacdeea73687ed2a7a0038fd52cfe43621a592959fef4907f60918cfb53f65ead357b3b13102cdfd82b5eab197923c
-
SSDEEP
6144:IziLa4MxNEC/Xi8+1Jxua5ZDCtZd6JfWZRb:19MxOSc13PDQHp
Malware Config
Extracted
redline
LogsDiller Cloud (TG: @logsdillabot)
51.89.201.49:6932
-
auth_value
3a050df92d0cf082b2cdaf87863616be
Signatures
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.