General
-
Target
5edfec324acf289cba05be172c2a0750
-
Size
328KB
-
Sample
231219-t3qyaafbgj
-
MD5
5edfec324acf289cba05be172c2a0750
-
SHA1
236bcc761839b43fa7dbdc5011da7cf880aa23af
-
SHA256
7d6b77352ac9ecf44f8bca2c79b4cdf0c98947b76018b94abbe5e65651f1bb78
-
SHA512
f8b971847467b07d509c0579e18726881372b4434230db1168a694529fa48df9b0e53da57d8485d00cca61d2060d6228bd8e7549e12c8b7f14ea81b732fb8b51
-
SSDEEP
6144:7oojJvgNiCpj8ZLOtFH7h5WRhfJZ7XA66ybDIhaeFuRsftqFFOj:7F94NiCpjGs35WRljLA66AFnij
Static task
static1
Behavioral task
behavioral1
Sample
5edfec324acf289cba05be172c2a0750.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
5edfec324acf289cba05be172c2a0750.exe
Resource
win10v2004-20231215-en
Malware Config
Extracted
redline
build
185.244.182.136:51832
-
auth_value
275ce2c87153d4e8e3cc276c686a93de
Targets
-
-
Target
5edfec324acf289cba05be172c2a0750
-
Size
328KB
-
MD5
5edfec324acf289cba05be172c2a0750
-
SHA1
236bcc761839b43fa7dbdc5011da7cf880aa23af
-
SHA256
7d6b77352ac9ecf44f8bca2c79b4cdf0c98947b76018b94abbe5e65651f1bb78
-
SHA512
f8b971847467b07d509c0579e18726881372b4434230db1168a694529fa48df9b0e53da57d8485d00cca61d2060d6228bd8e7549e12c8b7f14ea81b732fb8b51
-
SSDEEP
6144:7oojJvgNiCpj8ZLOtFH7h5WRhfJZ7XA66ybDIhaeFuRsftqFFOj:7F94NiCpjGs35WRljLA66AFnij
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
SectopRAT payload
-