General
-
Target
0682a9f5123addd86cb7f295c67ab518.exe
-
Size
260KB
-
Sample
240101-mdgjzsgghm
-
MD5
0682a9f5123addd86cb7f295c67ab518
-
SHA1
ca32ad01e5fdfeb1b6cba24d1cabf55d6b4c63f1
-
SHA256
98debd3c3f4b58905b927d6da181e996823b9e7a2f38824eef7787649aca1b19
-
SHA512
918b9f99640012e6e70083419a631217efe51a50d39e61e547e92b2be1a04badff698630c6bd931e7191465634b6177b2e8be86ce1c75abb67aadaed94ca866b
-
SSDEEP
6144:nacUZ1tmz14i+fpJjWWEUQGm55yQPYYu/xuXfgi:MZ/HDoR53wYSxIfgi
Static task
static1
Behavioral task
behavioral1
Sample
0682a9f5123addd86cb7f295c67ab518.exe
Resource
win7-20231215-en
Malware Config
Extracted
redline
EU
tstamore.info:80
Targets
-
-
Target
0682a9f5123addd86cb7f295c67ab518.exe
-
Size
260KB
-
MD5
0682a9f5123addd86cb7f295c67ab518
-
SHA1
ca32ad01e5fdfeb1b6cba24d1cabf55d6b4c63f1
-
SHA256
98debd3c3f4b58905b927d6da181e996823b9e7a2f38824eef7787649aca1b19
-
SHA512
918b9f99640012e6e70083419a631217efe51a50d39e61e547e92b2be1a04badff698630c6bd931e7191465634b6177b2e8be86ce1c75abb67aadaed94ca866b
-
SSDEEP
6144:nacUZ1tmz14i+fpJjWWEUQGm55yQPYYu/xuXfgi:MZ/HDoR53wYSxIfgi
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
SectopRAT payload
-
Suspicious use of SetThreadContext
-