General
-
Target
5430bfc53922396862de56efbc20bd8a
-
Size
358KB
-
Sample
231219-s9mc1aghcl
-
MD5
5430bfc53922396862de56efbc20bd8a
-
SHA1
b73e67baca5a4a159c5d3fb641a0a1abc49cdd22
-
SHA256
128155136c21b16e1eb34c84e1aeacaea8ce00543b5a0943cda09ad07cea62a4
-
SHA512
b4e8320dbe7deec98138ee9fc3cd3a26a8050489adb483092ee570faead02eb8144276b60a30d531d3cc1c52f5f7cc2e0376db60116426c6689945bf8ac108b9
-
SSDEEP
6144:QQVLph/qyyMnVqVy+7oxfKgLFIU+8SUfm5ZCFsVuU9ysvJzl0zeiZivdhQ19f7R:QUFdqyyMnVqVy+7oxxLFIU+aO5wFsh9Y
Static task
static1
Behavioral task
behavioral1
Sample
5430bfc53922396862de56efbc20bd8a.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
5430bfc53922396862de56efbc20bd8a.exe
Resource
win10v2004-20231215-en
Malware Config
Extracted
redline
paladin
178.63.26.132:29795
Targets
-
-
Target
5430bfc53922396862de56efbc20bd8a
-
Size
358KB
-
MD5
5430bfc53922396862de56efbc20bd8a
-
SHA1
b73e67baca5a4a159c5d3fb641a0a1abc49cdd22
-
SHA256
128155136c21b16e1eb34c84e1aeacaea8ce00543b5a0943cda09ad07cea62a4
-
SHA512
b4e8320dbe7deec98138ee9fc3cd3a26a8050489adb483092ee570faead02eb8144276b60a30d531d3cc1c52f5f7cc2e0376db60116426c6689945bf8ac108b9
-
SSDEEP
6144:QQVLph/qyyMnVqVy+7oxfKgLFIU+8SUfm5ZCFsVuU9ysvJzl0zeiZivdhQ19f7R:QUFdqyyMnVqVy+7oxxLFIU+aO5wFsh9Y
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
SectopRAT payload
-