General
-
Target
19656542730a09401d0b5613e9f57c29
-
Size
305KB
-
Sample
231225-m6fhdsbgc5
-
MD5
19656542730a09401d0b5613e9f57c29
-
SHA1
2b1072a5f1110382c47c2f7394440dc05b3a5e38
-
SHA256
16a2824230c46d9330202f424a65254364942ec344ed4ae0edc8e8bfe9ca8f1c
-
SHA512
755840ab4b68f74fd8812fa575fa6b8c43f37992bf89c2de8d8a0db03f33c51a9a96d9eca2b1bf4275ec44015c6392cd7f5e9a91b53759d3e6cdeac4f10beb18
-
SSDEEP
6144:Na+T+TjYhjZxXOoIPTsla9txzC6ozjzanSJfPYOw4:XT+fYhVx0PoE9vmzjmf4
Malware Config
Extracted
redline
PUB
185.215.113.45:41009
Targets
-
-
Target
19656542730a09401d0b5613e9f57c29
-
Size
305KB
-
MD5
19656542730a09401d0b5613e9f57c29
-
SHA1
2b1072a5f1110382c47c2f7394440dc05b3a5e38
-
SHA256
16a2824230c46d9330202f424a65254364942ec344ed4ae0edc8e8bfe9ca8f1c
-
SHA512
755840ab4b68f74fd8812fa575fa6b8c43f37992bf89c2de8d8a0db03f33c51a9a96d9eca2b1bf4275ec44015c6392cd7f5e9a91b53759d3e6cdeac4f10beb18
-
SSDEEP
6144:Na+T+TjYhjZxXOoIPTsla9txzC6ozjzanSJfPYOw4:XT+fYhVx0PoE9vmzjmf4
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
SectopRAT
SectopRAT is a remote access trojan first seen in November 2019.
-
SectopRAT payload
-