Overview

overview

10

Static

static

1

winprofile

windows7-x64

10

winprofile

windows10-1703-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    cd9637c27530f906cb7515256a8574151882541980ee470907845e8498ac4b88

  • Size

    532KB

  • Sample

    240204-ejkjtsbdgr

  • MD5

    0a349ab17050868092d8c4343099e390

  • SHA1

    fa71fc97bbf7866bc1450071cc1fbd9f92f116e8

  • SHA256

    cd9637c27530f906cb7515256a8574151882541980ee470907845e8498ac4b88

  • SHA512

    4752c4a5ca208dfc606a5203fd94d7916952e0729e64053b295410455fb218cb6ae676605ee3039f2e800c9c9e52ca9296cd8dc1ae6937dda43859370055d33c

  • SSDEEP

    6144:XHAtPR0oP+GYkOta8YuxasqB08mLmWcOy9+RICliNjKuKM20kAXCg46rVnwKmAd5:Qr0fvxBk8LRby/PgzV+Cg4gZnHfn

Score
10/10
redlineinfostealer

Malware Config

Targets

    • Target

      cd9637c27530f906cb7515256a8574151882541980ee470907845e8498ac4b88

    • Size

      532KB

    • MD5

      0a349ab17050868092d8c4343099e390

    • SHA1

      fa71fc97bbf7866bc1450071cc1fbd9f92f116e8

    • SHA256

      cd9637c27530f906cb7515256a8574151882541980ee470907845e8498ac4b88

    • SHA512

      4752c4a5ca208dfc606a5203fd94d7916952e0729e64053b295410455fb218cb6ae676605ee3039f2e800c9c9e52ca9296cd8dc1ae6937dda43859370055d33c

    • SSDEEP

      6144:XHAtPR0oP+GYkOta8YuxasqB08mLmWcOy9+RICliNjKuKM20kAXCg46rVnwKmAd5:Qr0fvxBk8LRby/PgzV+Cg4gZnHfn

    Score
    10/10
    redlineinfostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine payload

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks