General
-
Target
0x0008000000013392-78.dat
-
Size
172KB
-
Sample
240311-xkq24sdc88
-
MD5
75882eb647824c5bece89052e5d68457
-
SHA1
8107eeb9d4b459add2d918c2984e0f72a8aa5765
-
SHA256
7342989aa6ca133ca5e95303c5a30f2da75ccebc8166b2d5253eb562ec8b7678
-
SHA512
b443124e3e0c01fe6ad13d79ec3b49baaba16781f046c80cd48f8bdf9a8cf28c57fe4e962dada3d4a217466b8a472b8e90dd11aded0ba82595f2f58494266c29
-
SSDEEP
3072:PZ+q6hVbwIxxiIDg8qAxNKcbMhQ4k9o8e8hi:PZ+q6P7ihjB654k9o
Behavioral task
behavioral1
Sample
0x0008000000013392-78.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
0x0008000000013392-78.exe
Resource
win10v2004-20240226-en
Malware Config
Extracted
redline
diza
83.97.73.130:19061
-
auth_value
0d09b419c8bc967f91c68be4a17e92ee
Targets
-
-
Target
0x0008000000013392-78.dat
-
Size
172KB
-
MD5
75882eb647824c5bece89052e5d68457
-
SHA1
8107eeb9d4b459add2d918c2984e0f72a8aa5765
-
SHA256
7342989aa6ca133ca5e95303c5a30f2da75ccebc8166b2d5253eb562ec8b7678
-
SHA512
b443124e3e0c01fe6ad13d79ec3b49baaba16781f046c80cd48f8bdf9a8cf28c57fe4e962dada3d4a217466b8a472b8e90dd11aded0ba82595f2f58494266c29
-
SSDEEP
3072:PZ+q6hVbwIxxiIDg8qAxNKcbMhQ4k9o8e8hi:PZ+q6P7ihjB654k9o
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-