General
-
Target
0x000800000001230c-2244.dat
-
Size
168KB
-
Sample
240304-wlnspsha5w
-
MD5
b86009831e8d5622adb3766a04489563
-
SHA1
5d3c61e02f18c0502d583580aa0e045f27bab631
-
SHA256
c28219dacb5e54eef5877eec7e62a6d88dd5408eb2ae12157fa7fc9143c8bc0f
-
SHA512
532fb8767aa2d6d4fe8b29ce076c4e9a39658f5539bae888f007d9d7a35680a5265d9a44b69bf052321e46808347b152f533062976c374088d844f8cae70070b
-
SSDEEP
3072:/gU7IlKYCPqVyAcAva972RaA2uZu8e8hl:JIIneja972RaA2uZu
Behavioral task
behavioral1
Sample
0x000800000001230c-2244.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
0x000800000001230c-2244.exe
Resource
win10v2004-20240226-en
Malware Config
Extracted
redline
lenox
77.91.124.145:4125
-
auth_value
a5c9c17a250a084c5fd706c1df7c2d4e
Targets
-
-
Target
0x000800000001230c-2244.dat
-
Size
168KB
-
MD5
b86009831e8d5622adb3766a04489563
-
SHA1
5d3c61e02f18c0502d583580aa0e045f27bab631
-
SHA256
c28219dacb5e54eef5877eec7e62a6d88dd5408eb2ae12157fa7fc9143c8bc0f
-
SHA512
532fb8767aa2d6d4fe8b29ce076c4e9a39658f5539bae888f007d9d7a35680a5265d9a44b69bf052321e46808347b152f533062976c374088d844f8cae70070b
-
SSDEEP
3072:/gU7IlKYCPqVyAcAva972RaA2uZu8e8hl:JIIneja972RaA2uZu
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-