General
-
Target
d67289783556eb4f4cd5b98254e21719
-
Size
416KB
-
Sample
231220-sshngseecr
-
MD5
d67289783556eb4f4cd5b98254e21719
-
SHA1
253580b1321069402ad388cdfc7c8e4d336eb845
-
SHA256
d01f74c1a7b83ee5ae16b376fdd981bb95d93c62cbceb8078d7f3e372601ecd9
-
SHA512
97dab4d8b84b70ffa310d6e2f9ef40f54b97762d0a9822cf47bcd4d143d0cc4dbebca91108121dfec1c2991566591bf4ec04a770b717a1cce420be527749de41
-
SSDEEP
6144:PsFTReFnIq1yFBubl5ugPtvWI0uYClqKUNo3GAUMs5w:kNwn91yFqlggVvWI0unlao3GA
Static task
static1
Behavioral task
behavioral1
Sample
d67289783556eb4f4cd5b98254e21719.exe
Resource
win7-20231215-en
Malware Config
Extracted
redline
paladin
178.63.26.132:29795
-
auth_value
f27db372188045eefdf974196ead3dae
Targets
-
-
Target
d67289783556eb4f4cd5b98254e21719
-
Size
416KB
-
MD5
d67289783556eb4f4cd5b98254e21719
-
SHA1
253580b1321069402ad388cdfc7c8e4d336eb845
-
SHA256
d01f74c1a7b83ee5ae16b376fdd981bb95d93c62cbceb8078d7f3e372601ecd9
-
SHA512
97dab4d8b84b70ffa310d6e2f9ef40f54b97762d0a9822cf47bcd4d143d0cc4dbebca91108121dfec1c2991566591bf4ec04a770b717a1cce420be527749de41
-
SSDEEP
6144:PsFTReFnIq1yFBubl5ugPtvWI0uYClqKUNo3GAUMs5w:kNwn91yFqlggVvWI0unlao3GA
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
SectopRAT payload
-