General
-
Target
078dfd0635813b070909d43b9de7d18c.exe
-
Size
318KB
-
Sample
240311-q5t6yagd43
-
MD5
078dfd0635813b070909d43b9de7d18c
-
SHA1
51a9e42cb6d197080093a4d147bd3c38008f2d35
-
SHA256
290e18ae73253334bf5015a982cdb3ea0446d9977743aaa3672caf8de2952480
-
SHA512
4b4cba872d1776f334926171c1f1bbfc1683e891355a0f383438105253476f3d7e6f072d0deeee7db21c81a68ec1b5edd4f9ec9734d21d5d78130a1272e82d86
-
SSDEEP
6144:Aog99qkmi1pT0OKopQhDzjw31iYnN5D38Zm8QN:fG9qkJ0pop8Dz83T5DsE8Q
Static task
static1
Behavioral task
behavioral1
Sample
078dfd0635813b070909d43b9de7d18c.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
078dfd0635813b070909d43b9de7d18c.exe
Resource
win10v2004-20240226-en
Malware Config
Extracted
redline
fronx2
fronxtracking.com:80
-
auth_value
0a4100df2644a6a6582137d2da2c8bd1
Targets
-
-
Target
078dfd0635813b070909d43b9de7d18c.exe
-
Size
318KB
-
MD5
078dfd0635813b070909d43b9de7d18c
-
SHA1
51a9e42cb6d197080093a4d147bd3c38008f2d35
-
SHA256
290e18ae73253334bf5015a982cdb3ea0446d9977743aaa3672caf8de2952480
-
SHA512
4b4cba872d1776f334926171c1f1bbfc1683e891355a0f383438105253476f3d7e6f072d0deeee7db21c81a68ec1b5edd4f9ec9734d21d5d78130a1272e82d86
-
SSDEEP
6144:Aog99qkmi1pT0OKopQhDzjw31iYnN5D38Zm8QN:fG9qkJ0pop8Dz83T5DsE8Q
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-