General
-
Target
7ba55813ad5deba53ae09d8796e158f4d179f0ec58711df4ad1bdfaed2d2aee2.exe
-
Size
1.1MB
-
Sample
231107-r3686abh75
-
MD5
b9b98dfcc7a56c6beda2f43f296b1f61
-
SHA1
513a8d2b2e51356e6db9013389243bc7ddc82f4d
-
SHA256
7ba55813ad5deba53ae09d8796e158f4d179f0ec58711df4ad1bdfaed2d2aee2
-
SHA512
fda17e6a2b004ca9518b82ec653aee60323d95a70bbfa061a7e8ee467cf4a8d8f1f01fa022724b76b473996f9e7c56aef600672c927a09fbf4260f174b5885ae
-
SSDEEP
12288:XC9ofgTLMa29AS087kHCqZXjIR+LbUjZAkEuWSe/eM1SrxRydJYNarKK:Xl4T/29AX87kHCsUR+vu3MaQYNar
Static task
static1
Behavioral task
behavioral1
Sample
7ba55813ad5deba53ae09d8796e158f4d179f0ec58711df4ad1bdfaed2d2aee2.exe
Resource
win7-20231020-en
Behavioral task
behavioral2
Sample
7ba55813ad5deba53ae09d8796e158f4d179f0ec58711df4ad1bdfaed2d2aee2.exe
Resource
win10v2004-20231023-en
Malware Config
Extracted
redline
grome
77.91.124.86:19084
Targets
-
-
Target
7ba55813ad5deba53ae09d8796e158f4d179f0ec58711df4ad1bdfaed2d2aee2.exe
-
Size
1.1MB
-
MD5
b9b98dfcc7a56c6beda2f43f296b1f61
-
SHA1
513a8d2b2e51356e6db9013389243bc7ddc82f4d
-
SHA256
7ba55813ad5deba53ae09d8796e158f4d179f0ec58711df4ad1bdfaed2d2aee2
-
SHA512
fda17e6a2b004ca9518b82ec653aee60323d95a70bbfa061a7e8ee467cf4a8d8f1f01fa022724b76b473996f9e7c56aef600672c927a09fbf4260f174b5885ae
-
SSDEEP
12288:XC9ofgTLMa29AS087kHCqZXjIR+LbUjZAkEuWSe/eM1SrxRydJYNarKK:Xl4T/29AX87kHCsUR+vu3MaQYNar
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
Suspicious use of SetThreadContext
-