General
-
Target
5bf2a0e6d7416b1c2fddc172ed27f700
-
Size
401KB
-
Sample
240115-ddq9rahaa2
-
MD5
5bf2a0e6d7416b1c2fddc172ed27f700
-
SHA1
e4ec68943d4f4b682b26ffffb3c7029c4879a68e
-
SHA256
dde94342d5afa09f35cf67c9f2363ebc0702a1dfc4c270be30378ec0a20a8783
-
SHA512
cd2f1d6b25b56b14121b121a8b58f6e024a7379214cf5d50a8751c2b568ff9abc37a940d4aafe91daf21736263f952534eb8909f8f3a2bb9de4dcddb2236d8da
-
SSDEEP
6144:XohUfR1Gd3XEDQdFIfPC91SmUXZWPwRwoXGhoqUz:XohsR1Gd3XEcdFz91SmUXZWoRwoWhoZz
Static task
static1
Behavioral task
behavioral1
Sample
5bf2a0e6d7416b1c2fddc172ed27f700.exe
Resource
win7-20231215-en
Malware Config
Extracted
redline
5k_30_SUM
45.14.49.117:14251
Targets
-
-
Target
5bf2a0e6d7416b1c2fddc172ed27f700
-
Size
401KB
-
MD5
5bf2a0e6d7416b1c2fddc172ed27f700
-
SHA1
e4ec68943d4f4b682b26ffffb3c7029c4879a68e
-
SHA256
dde94342d5afa09f35cf67c9f2363ebc0702a1dfc4c270be30378ec0a20a8783
-
SHA512
cd2f1d6b25b56b14121b121a8b58f6e024a7379214cf5d50a8751c2b568ff9abc37a940d4aafe91daf21736263f952534eb8909f8f3a2bb9de4dcddb2236d8da
-
SSDEEP
6144:XohUfR1Gd3XEDQdFIfPC91SmUXZWPwRwoXGhoqUz:XohsR1Gd3XEcdFz91SmUXZWoRwoWhoZz
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
SectopRAT payload
-
Suspicious use of SetThreadContext
-