General
-
Target
42a3c6e472f08b8b72e95c5eff1e16e1
-
Size
390KB
-
Sample
231219-rst6vaeegr
-
MD5
42a3c6e472f08b8b72e95c5eff1e16e1
-
SHA1
8985be7e38083b8693c5babf309c6b366d02ab9e
-
SHA256
83570701b9166f1c714fafd165173ca4def632f6050c67666989bc8a3694795f
-
SHA512
35d11af8a96665e4cbb9b874eebd52c1920e169a7f08456cb2878ee22208483278569636fc90904210f690f7a1b9afca5d577398b1658114e17410fdf1c3121a
-
SSDEEP
6144:TCLbFDypv5ct2dso//zjogNbm85ApXStqJL6UOOhxxdeTr/ekIp:mtDypKo/ogNbmquCGL6yzxd6LK
Static task
static1
Behavioral task
behavioral1
Sample
42a3c6e472f08b8b72e95c5eff1e16e1.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
42a3c6e472f08b8b72e95c5eff1e16e1.exe
Resource
win10v2004-20231215-en
Malware Config
Extracted
redline
paladin
178.63.26.132:29795
Targets
-
-
Target
42a3c6e472f08b8b72e95c5eff1e16e1
-
Size
390KB
-
MD5
42a3c6e472f08b8b72e95c5eff1e16e1
-
SHA1
8985be7e38083b8693c5babf309c6b366d02ab9e
-
SHA256
83570701b9166f1c714fafd165173ca4def632f6050c67666989bc8a3694795f
-
SHA512
35d11af8a96665e4cbb9b874eebd52c1920e169a7f08456cb2878ee22208483278569636fc90904210f690f7a1b9afca5d577398b1658114e17410fdf1c3121a
-
SSDEEP
6144:TCLbFDypv5ct2dso//zjogNbm85ApXStqJL6UOOhxxdeTr/ekIp:mtDypKo/ogNbmquCGL6yzxd6LK
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
SectopRAT payload
-