General
-
Target
db95f7dac617bbe26fcbd9de7d47cf122bf92aff7b1a3e9f86263ae7e66deb00
-
Size
295KB
-
Sample
240407-car67shg6v
-
MD5
6edde1278e2c3515d919ee869365c461
-
SHA1
a1997bbd2577bb69f068dc6cb9fad864f8bdadaf
-
SHA256
db95f7dac617bbe26fcbd9de7d47cf122bf92aff7b1a3e9f86263ae7e66deb00
-
SHA512
534c56a2b2f5ff9f56e5def13b6ee00d02043322b212b22844bceb0039c3f488206dea1606e0c69a8b740c9cc7ee8acbb0d123c53f97993d3249bd4c478690af
-
SSDEEP
6144:YbklngfPgoKYpzQiW/zfyPG3pxVfGAm3:QLXgxYpgzOMBw
Static task
static1
Behavioral task
behavioral1
Sample
db95f7dac617bbe26fcbd9de7d47cf122bf92aff7b1a3e9f86263ae7e66deb00.exe
Resource
win7-20240215-en
Behavioral task
behavioral2
Sample
db95f7dac617bbe26fcbd9de7d47cf122bf92aff7b1a3e9f86263ae7e66deb00.exe
Resource
win10v2004-20240226-en
Malware Config
Extracted
redline
rosn
176.113.115.145:4125
-
auth_value
050a19e1db4d0024b0f23b37dcf961f4
Targets
-
-
Target
db95f7dac617bbe26fcbd9de7d47cf122bf92aff7b1a3e9f86263ae7e66deb00
-
Size
295KB
-
MD5
6edde1278e2c3515d919ee869365c461
-
SHA1
a1997bbd2577bb69f068dc6cb9fad864f8bdadaf
-
SHA256
db95f7dac617bbe26fcbd9de7d47cf122bf92aff7b1a3e9f86263ae7e66deb00
-
SHA512
534c56a2b2f5ff9f56e5def13b6ee00d02043322b212b22844bceb0039c3f488206dea1606e0c69a8b740c9cc7ee8acbb0d123c53f97993d3249bd4c478690af
-
SSDEEP
6144:YbklngfPgoKYpzQiW/zfyPG3pxVfGAm3:QLXgxYpgzOMBw
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-