General
-
Target
d1a439295d063bc6f792782a10d8f8c1
-
Size
324KB
-
Sample
240317-xs4m6sea3t
-
MD5
d1a439295d063bc6f792782a10d8f8c1
-
SHA1
16e0a70a9f133961b82db3bb49c8b5bc789b3205
-
SHA256
9b460178a8c3bd7321e69609f53c42e088e0aa91686d4bf09a595e2c3e09fef8
-
SHA512
f4266222e4c24dd98b8e66b261183636a15a900c659d87000bce88b3a29bc99e6f95588c241eb5d5289c72826fb8d932449347a441a9070e7d6f7400c3fe127e
-
SSDEEP
6144:h4frgjiuiwMoZh6In/ba90bD6BPAnpQx5AH:h40ji8MPg/ba9sD6BPAi
Static task
static1
Behavioral task
behavioral1
Sample
d1a439295d063bc6f792782a10d8f8c1.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
d1a439295d063bc6f792782a10d8f8c1.exe
Resource
win10v2004-20240226-en
Malware Config
Extracted
redline
SewPalpadin
185.215.113.114:8887
Targets
-
-
Target
d1a439295d063bc6f792782a10d8f8c1
-
Size
324KB
-
MD5
d1a439295d063bc6f792782a10d8f8c1
-
SHA1
16e0a70a9f133961b82db3bb49c8b5bc789b3205
-
SHA256
9b460178a8c3bd7321e69609f53c42e088e0aa91686d4bf09a595e2c3e09fef8
-
SHA512
f4266222e4c24dd98b8e66b261183636a15a900c659d87000bce88b3a29bc99e6f95588c241eb5d5289c72826fb8d932449347a441a9070e7d6f7400c3fe127e
-
SSDEEP
6144:h4frgjiuiwMoZh6In/ba90bD6BPAnpQx5AH:h40ji8MPg/ba9sD6BPAi
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
SectopRAT payload
-