General
-
Target
7c81058bf4838d0d570044981a0c4de5
-
Size
621KB
-
Sample
231222-j5zyvsfaf9
-
MD5
7c81058bf4838d0d570044981a0c4de5
-
SHA1
a78ddad92b2cb1a9ba9c1d840d26803420976935
-
SHA256
bf90ed75f44fab1eb49a9bc8ee12c56923a9766bf03794b9a293024be4b0369b
-
SHA512
e05c7dea2928d6a25937c18b7d32ea2def4f4d89e37d730c1074b14b29a337f8eee1d5748b8622706d2ce666cec7a487975fd60dc31186cee917033b3928880d
-
SSDEEP
12288:FONXCUklT97igXmy/BRjhq/jL98lua4dR1HKWqf8hGt3hFmg7s3K4olA:8QL5jhoO
Static task
static1
Behavioral task
behavioral1
Sample
7c81058bf4838d0d570044981a0c4de5.exe
Resource
win7-20231215-en
Malware Config
Extracted
redline
2
45.147.228.207:1569
Targets
-
-
Target
7c81058bf4838d0d570044981a0c4de5
-
Size
621KB
-
MD5
7c81058bf4838d0d570044981a0c4de5
-
SHA1
a78ddad92b2cb1a9ba9c1d840d26803420976935
-
SHA256
bf90ed75f44fab1eb49a9bc8ee12c56923a9766bf03794b9a293024be4b0369b
-
SHA512
e05c7dea2928d6a25937c18b7d32ea2def4f4d89e37d730c1074b14b29a337f8eee1d5748b8622706d2ce666cec7a487975fd60dc31186cee917033b3928880d
-
SSDEEP
12288:FONXCUklT97igXmy/BRjhq/jL98lua4dR1HKWqf8hGt3hFmg7s3K4olA:8QL5jhoO
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
SectopRAT payload
-
Suspicious use of SetThreadContext
-