General
-
Target
cd26d1159f20d37cca1aa22af82cf6a3
-
Size
309KB
-
Sample
240316-fht8baec66
-
MD5
cd26d1159f20d37cca1aa22af82cf6a3
-
SHA1
f24612e9ae118b4a885c3983022d33da0009a70a
-
SHA256
5d7e056cab62d45da796272f782b92fdba8c38827e678fa1273c0ccb71aa6d83
-
SHA512
171da49fd4d34e07bd50c46f27b08d1fb96f4d65706fee68ac76c7ab068c89cefa0a97034b4d8a2bc326174ead329a009ad94993d782e2bf5e3e291f7a32d515
-
SSDEEP
6144:KhLDRPVxtbyDT9B70uWaHfwkLhpgsgFVg8FY6xA:Khvdt+70u/H5S4
Malware Config
Extracted
redline
zaliv
185.244.216.219:33828
Targets
-
-
Target
cd26d1159f20d37cca1aa22af82cf6a3
-
Size
309KB
-
MD5
cd26d1159f20d37cca1aa22af82cf6a3
-
SHA1
f24612e9ae118b4a885c3983022d33da0009a70a
-
SHA256
5d7e056cab62d45da796272f782b92fdba8c38827e678fa1273c0ccb71aa6d83
-
SHA512
171da49fd4d34e07bd50c46f27b08d1fb96f4d65706fee68ac76c7ab068c89cefa0a97034b4d8a2bc326174ead329a009ad94993d782e2bf5e3e291f7a32d515
-
SSDEEP
6144:KhLDRPVxtbyDT9B70uWaHfwkLhpgsgFVg8FY6xA:Khvdt+70u/H5S4
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
SectopRAT
SectopRAT is a remote access trojan first seen in November 2019.
-
SectopRAT payload
-