General
-
Target
6210dd127fccae0a14413a384f41f4e6
-
Size
429KB
-
Sample
231219-vc1v8shbfm
-
MD5
6210dd127fccae0a14413a384f41f4e6
-
SHA1
ff579352d658945c04fc912a322ce2eba642a06f
-
SHA256
54c8f39eb84b4349223760a7706b119d65128f8664d642402e878dfbce2e3311
-
SHA512
58e976dc3050571b4f81ec029331a8631a5f0f6ea877794e8768bed7c37729bddc68103b16f5fed58f8f1cd1ef2094d964c90c5597fa50df78588c88a6d1f410
-
SSDEEP
12288:sjPW2ZtX7xanAgHUd9r99EgkwJrP08dWcrP4D+51aY:sy2TX74nAg0d2gkUP08d54f
Static task
static1
Behavioral task
behavioral1
Sample
6210dd127fccae0a14413a384f41f4e6.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
6210dd127fccae0a14413a384f41f4e6.exe
Resource
win10v2004-20231215-en
Malware Config
Extracted
redline
22
185.244.217.195:21588
-
auth_value
0b4dd148fec0e77245f4ce28089cdd6e
Targets
-
-
Target
6210dd127fccae0a14413a384f41f4e6
-
Size
429KB
-
MD5
6210dd127fccae0a14413a384f41f4e6
-
SHA1
ff579352d658945c04fc912a322ce2eba642a06f
-
SHA256
54c8f39eb84b4349223760a7706b119d65128f8664d642402e878dfbce2e3311
-
SHA512
58e976dc3050571b4f81ec029331a8631a5f0f6ea877794e8768bed7c37729bddc68103b16f5fed58f8f1cd1ef2094d964c90c5597fa50df78588c88a6d1f410
-
SSDEEP
12288:sjPW2ZtX7xanAgHUd9r99EgkwJrP08dWcrP4D+51aY:sy2TX74nAg0d2gkUP08d54f
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
SectopRAT payload
-