General
-
Target
51297ca658f66c270f4aeeb24c1cf2f4
-
Size
116KB
-
Sample
240110-vy7kxacfh4
-
MD5
51297ca658f66c270f4aeeb24c1cf2f4
-
SHA1
397f29200d65eb4b69ee1d66a8deab4b9ae2f505
-
SHA256
9ab78ca17475bc6f79aa45804e6fa1c5081e95126ca00b8264b20c24cde6607c
-
SHA512
c5bf5bc31fbdc041d94865250e24d157a2ed4cf3a73e033758caab13cb3a474cea2b5c1b4ba451e3efc00a1f155addc69874ca19e7055e9e2c0e9b80c38c4881
-
SSDEEP
3072:EeMnxxzowwwwwwwwwwwZw1ww4uvGnPyOdHTkEqVCI:ieUy4Vg
Malware Config
Extracted
redline
install
185.167.97.37:30904
Targets
-
-
Target
51297ca658f66c270f4aeeb24c1cf2f4
-
Size
116KB
-
MD5
51297ca658f66c270f4aeeb24c1cf2f4
-
SHA1
397f29200d65eb4b69ee1d66a8deab4b9ae2f505
-
SHA256
9ab78ca17475bc6f79aa45804e6fa1c5081e95126ca00b8264b20c24cde6607c
-
SHA512
c5bf5bc31fbdc041d94865250e24d157a2ed4cf3a73e033758caab13cb3a474cea2b5c1b4ba451e3efc00a1f155addc69874ca19e7055e9e2c0e9b80c38c4881
-
SSDEEP
3072:EeMnxxzowwwwwwwwwwwZw1ww4uvGnPyOdHTkEqVCI:ieUy4Vg
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
SectopRAT
SectopRAT is a remote access trojan first seen in November 2019.
-
SectopRAT payload
-