General
-
Target
9a4b709c8ac7dd44a893fab623969ff1
-
Size
354KB
-
Sample
231219-zl4qpshbcr
-
MD5
9a4b709c8ac7dd44a893fab623969ff1
-
SHA1
087f39f13c24add8398a5b3821d3dec79b19dfb4
-
SHA256
4bdb861f39956fa5d231e8d9cae22b50db58f157f8880a4839cd147019fddd57
-
SHA512
e2692635ae29c3c224e842458c12b25b5e8da6df27d168f069ea1537507e5f3004b7c26cc17583617e1c3660f882b2628d6b454f30b93b6ecf4045b7565cece1
-
SSDEEP
6144:KQS7ZhTM44TIAggvkCP1LSIfbLRl4MoldlcQbfHsukU1hpD7R:KbFhM44TLgVK1OIf4MoDllMuB1hpD9
Malware Config
Extracted
redline
paladin
178.63.26.132:29795
Targets
-
-
Target
9a4b709c8ac7dd44a893fab623969ff1
-
Size
354KB
-
MD5
9a4b709c8ac7dd44a893fab623969ff1
-
SHA1
087f39f13c24add8398a5b3821d3dec79b19dfb4
-
SHA256
4bdb861f39956fa5d231e8d9cae22b50db58f157f8880a4839cd147019fddd57
-
SHA512
e2692635ae29c3c224e842458c12b25b5e8da6df27d168f069ea1537507e5f3004b7c26cc17583617e1c3660f882b2628d6b454f30b93b6ecf4045b7565cece1
-
SSDEEP
6144:KQS7ZhTM44TIAggvkCP1LSIfbLRl4MoldlcQbfHsukU1hpD7R:KbFhM44TLgVK1OIf4MoDllMuB1hpD9
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
SectopRAT
SectopRAT is a remote access trojan first seen in November 2019.
-
SectopRAT payload
-