General
-
Target
8eef6d2361a4ba46c76fc7390211ef50
-
Size
497KB
-
Sample
240204-mpfrtshffp
-
MD5
8eef6d2361a4ba46c76fc7390211ef50
-
SHA1
80d740edde7fffbd05ebaafbcf6d7bb8a02ad016
-
SHA256
8a269b9cb003cde07e1b18b16cc59384343be9a9cb5ab71cb6f82ee5e2cd130b
-
SHA512
95ce5f64b443158c2c5cce1d43431a099257c5d49e52d8a17f178df32c69c143ad0d46c8682cc4ff521639c05fc44bdd0ce414f994087cfd524f9d0d9d021513
-
SSDEEP
6144:e33nzsAF7YrlbTyeaheHhpz85ka+wxdLsb/:OjsAF7YrlbO3hi9wsj
Static task
static1
Behavioral task
behavioral1
Sample
8eef6d2361a4ba46c76fc7390211ef50.exe
Resource
win7-20231215-en
Malware Config
Extracted
redline
3
45.88.107.116:44061
Targets
-
-
Target
8eef6d2361a4ba46c76fc7390211ef50
-
Size
497KB
-
MD5
8eef6d2361a4ba46c76fc7390211ef50
-
SHA1
80d740edde7fffbd05ebaafbcf6d7bb8a02ad016
-
SHA256
8a269b9cb003cde07e1b18b16cc59384343be9a9cb5ab71cb6f82ee5e2cd130b
-
SHA512
95ce5f64b443158c2c5cce1d43431a099257c5d49e52d8a17f178df32c69c143ad0d46c8682cc4ff521639c05fc44bdd0ce414f994087cfd524f9d0d9d021513
-
SSDEEP
6144:e33nzsAF7YrlbTyeaheHhpz85ka+wxdLsb/:OjsAF7YrlbO3hi9wsj
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
SectopRAT payload
-
Suspicious use of SetThreadContext
-