Overview

overview

10

Static

static

3

winprofile

windows7-x64

10

winprofile

windows10-1703-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    6b8a6e03207ee1a61bb14656de34bbe9a1eb13ad9ab350c090d7b65397642ede

  • Size

    680KB

  • Sample

    231102-fgmrvahg54

  • MD5

    eb645f8f32bbc89719efdaca72a7c23d

  • SHA1

    e37fda78264c0a16f8dc9218e263d1ba0c6f31d8

  • SHA256

    6b8a6e03207ee1a61bb14656de34bbe9a1eb13ad9ab350c090d7b65397642ede

  • SHA512

    99c8bcd5d1dc206382443c172a1c07d4ddf64aec09507a0a242f86a75ec1efc26f3a8168ec53f75bd7c74511439fb079298d3b38b07d691e79e78bc3e30f4687

  • SSDEEP

    12288:QfyqTX/MaLX00zFTu7XqnvsWgxVd7WgogJDSGr9Y1KrE:Wnz566vOMg3gmjE

Score
10/10
redlineinfostealer

Malware Config

Targets

    • Target

      6b8a6e03207ee1a61bb14656de34bbe9a1eb13ad9ab350c090d7b65397642ede

    • Size

      680KB

    • MD5

      eb645f8f32bbc89719efdaca72a7c23d

    • SHA1

      e37fda78264c0a16f8dc9218e263d1ba0c6f31d8

    • SHA256

      6b8a6e03207ee1a61bb14656de34bbe9a1eb13ad9ab350c090d7b65397642ede

    • SHA512

      99c8bcd5d1dc206382443c172a1c07d4ddf64aec09507a0a242f86a75ec1efc26f3a8168ec53f75bd7c74511439fb079298d3b38b07d691e79e78bc3e30f4687

    • SSDEEP

      12288:QfyqTX/MaLX00zFTu7XqnvsWgxVd7WgogJDSGr9Y1KrE:Wnz566vOMg3gmjE

    Score
    10/10
    redlineinfostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine payload

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks