General
-
Target
0fd4cc35d4545f34e4a14926800ce567
-
Size
1.0MB
-
Sample
231225-jlf2msfdh2
-
MD5
0fd4cc35d4545f34e4a14926800ce567
-
SHA1
4b78839b0610c4088f43fbc832f421ad737bd00b
-
SHA256
48392d598ded71e4b8002411d71b87f53eaeeabcc5d636b263df06c22eaeb172
-
SHA512
6396598ab1186cec46be1e0402e042bea099294bf9af8b2d32c557eb90562939d3a8df3617e80b7f745ad73246af29c5c224dbcb0bf30092b2b9a3af49e0b986
-
SSDEEP
12288:GU0NTISdQG8MgUhtTTCB3CHflOEspJpmrlP2BAZy2+misUC5VceGcSvvpQeEBGWT:GU6TIExdTnk5pJkxOo8snpSdEBPT
Static task
static1
Behavioral task
behavioral1
Sample
0fd4cc35d4545f34e4a14926800ce567.exe
Resource
win7-20231215-en
Malware Config
Extracted
redline
mastif
185.81.114.75:58642
Targets
-
-
Target
0fd4cc35d4545f34e4a14926800ce567
-
Size
1.0MB
-
MD5
0fd4cc35d4545f34e4a14926800ce567
-
SHA1
4b78839b0610c4088f43fbc832f421ad737bd00b
-
SHA256
48392d598ded71e4b8002411d71b87f53eaeeabcc5d636b263df06c22eaeb172
-
SHA512
6396598ab1186cec46be1e0402e042bea099294bf9af8b2d32c557eb90562939d3a8df3617e80b7f745ad73246af29c5c224dbcb0bf30092b2b9a3af49e0b986
-
SSDEEP
12288:GU0NTISdQG8MgUhtTTCB3CHflOEspJpmrlP2BAZy2+misUC5VceGcSvvpQeEBGWT:GU6TIExdTnk5pJkxOo8snpSdEBPT
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
SectopRAT payload
-
Suspicious use of SetThreadContext
-