General
-
Target
a4b40b0fc32f26a1306857548733e2f1
-
Size
275KB
-
Sample
240225-1xfnpaec2s
-
MD5
a4b40b0fc32f26a1306857548733e2f1
-
SHA1
8d29031032b0a12135c56aa728602d2df3f3d3e5
-
SHA256
ce5f57c90c0aa170cdd8aa0d34afec16df74e0adc480be243283a672fe083b72
-
SHA512
63ec1c0a5a55b7dda69e46a8dcd0bff3c0f18f488315cb3ca2239b323d447592a16a8819ecf59ec20c223be2b209406cd872af2e8054784432e15296aa38b4f6
-
SSDEEP
6144:IS6tYeei80QnJihF0GZu3Mo0cLvvesUsqq+GylFRwoOL:PKeZ0DF0Oo9zvesUiylbwoO
Static task
static1
Behavioral task
behavioral1
Sample
a4b40b0fc32f26a1306857548733e2f1.exe
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
a4b40b0fc32f26a1306857548733e2f1.exe
Resource
win10v2004-20240221-en
Malware Config
Extracted
redline
SewPalpadin
185.215.113.114:8887
Targets
-
-
Target
a4b40b0fc32f26a1306857548733e2f1
-
Size
275KB
-
MD5
a4b40b0fc32f26a1306857548733e2f1
-
SHA1
8d29031032b0a12135c56aa728602d2df3f3d3e5
-
SHA256
ce5f57c90c0aa170cdd8aa0d34afec16df74e0adc480be243283a672fe083b72
-
SHA512
63ec1c0a5a55b7dda69e46a8dcd0bff3c0f18f488315cb3ca2239b323d447592a16a8819ecf59ec20c223be2b209406cd872af2e8054784432e15296aa38b4f6
-
SSDEEP
6144:IS6tYeei80QnJihF0GZu3Mo0cLvvesUsqq+GylFRwoOL:PKeZ0DF0Oo9zvesUiylbwoO
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
SectopRAT payload
-