General
-
Target
file
-
Size
87KB
-
Sample
240423-m98ncaff58
-
MD5
a90f0b13387086655d886e0b202a5c02
-
SHA1
3964b4ba395f64723730820f919ebb81513a69d0
-
SHA256
9125e5fb42a5b7d4df3a99e64412571f84331b3a24567b218061029429a2e0a6
-
SHA512
eae047cf45a9b8ecb817ca3b5306655822906ceb5b1084f65e56304af52b284aace8013a357e1c86cf3e8f1cb66d56bc55984c0d8879a0732e7fa4d99e291118
-
SSDEEP
1536:PMQAiM0ZoTgAJuHnjde83Ml83Mn1CyKxzmFMtrWo0PcwtYbnZKCNPnJufkH80r8q:PMVgAkHnjP1trWBcw5Ufi1Z4
Static task
static1
Behavioral task
behavioral1
Sample
file.html
Resource
win7-20240221-en
Malware Config
Targets
-
-
Target
file
-
Size
87KB
-
MD5
a90f0b13387086655d886e0b202a5c02
-
SHA1
3964b4ba395f64723730820f919ebb81513a69d0
-
SHA256
9125e5fb42a5b7d4df3a99e64412571f84331b3a24567b218061029429a2e0a6
-
SHA512
eae047cf45a9b8ecb817ca3b5306655822906ceb5b1084f65e56304af52b284aace8013a357e1c86cf3e8f1cb66d56bc55984c0d8879a0732e7fa4d99e291118
-
SSDEEP
1536:PMQAiM0ZoTgAJuHnjde83Ml83Mn1CyKxzmFMtrWo0PcwtYbnZKCNPnJufkH80r8q:PMVgAkHnjP1trWBcw5Ufi1Z4
Score10/10-
Detect ZGRat V1
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
Executes dropped EXE
-
Legitimate hosting services abused for malware hosting/C2
-