General
-
Target
0x0007000000014b0d-997.dat
-
Size
175KB
-
Sample
240302-ljhtkacd73
-
MD5
02673c9f8b2ef39b1819e2c47edba612
-
SHA1
0c29b529cde3d55a71562b4d95757a64e745c7a3
-
SHA256
52d5883f12b9f0252380907dd63b0c0f6569e460cdb373a5f64fa8684700407a
-
SHA512
38bb83f39172ce82e7db03ddfa9eead57e26519962a9d43cf16ed61f8d0bed18f1a000571851027ec54310b1e42bef7f095d71ed3769eea8d82f0badf3a491da
-
SSDEEP
3072:BxqZW11a2kX8fkRyeiBWep3FhhFvxNn2pU9f2MKTV/wi4lr55R9TxlnsPsUw0jOf:zqZkkgN1hh
Behavioral task
behavioral1
Sample
0x0007000000014b0d-997.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
0x0007000000014b0d-997.exe
Resource
win10v2004-20240226-en
Malware Config
Extracted
redline
fabio
193.233.20.27:4123
-
auth_value
56b82736c3f56b13be8e64c87d2cf9e5
Targets
-
-
Target
0x0007000000014b0d-997.dat
-
Size
175KB
-
MD5
02673c9f8b2ef39b1819e2c47edba612
-
SHA1
0c29b529cde3d55a71562b4d95757a64e745c7a3
-
SHA256
52d5883f12b9f0252380907dd63b0c0f6569e460cdb373a5f64fa8684700407a
-
SHA512
38bb83f39172ce82e7db03ddfa9eead57e26519962a9d43cf16ed61f8d0bed18f1a000571851027ec54310b1e42bef7f095d71ed3769eea8d82f0badf3a491da
-
SSDEEP
3072:BxqZW11a2kX8fkRyeiBWep3FhhFvxNn2pU9f2MKTV/wi4lr55R9TxlnsPsUw0jOf:zqZkkgN1hh
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-