Overview

overview

10

Static

static

3

9941dc8857...92.exe

windows7-x64

10

9941dc8857...92.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9941dc8857ef1b6ffc86f88bd755789ded1b42c6aead836e88466d97bb1db392.exe

  • Size

    1.2MB

  • Sample

    240502-b8n2rsfg66

  • MD5

    bd909fb2282ec2e4a11400157c33494a

  • SHA1

    ab693a29a38b705be8c3b29172c6ac1374463f62

  • SHA256

    9941dc8857ef1b6ffc86f88bd755789ded1b42c6aead836e88466d97bb1db392

  • SHA512

    81857f502dc0a3d922bd74a0fdde3958c05a743c50dc8281b5db74b593a020e5d1d65677e645a2a262bb873c523765ba7274b359ec9eaf7442db7caf5e5fdf28

  • SSDEEP

    12288:Nh8Rq5U2PEmcWW3xXTTj3AehvfRFfYUjgyRnNRuc5VPMqS7hqpkw3A6YFG:QRq5U2PEmcWWJTTkeh3/fJzqhygS

Score
10/10
redlineinfostealer

Malware Config

Targets

    • Target

      9941dc8857ef1b6ffc86f88bd755789ded1b42c6aead836e88466d97bb1db392.exe

    • Size

      1.2MB

    • MD5

      bd909fb2282ec2e4a11400157c33494a

    • SHA1

      ab693a29a38b705be8c3b29172c6ac1374463f62

    • SHA256

      9941dc8857ef1b6ffc86f88bd755789ded1b42c6aead836e88466d97bb1db392

    • SHA512

      81857f502dc0a3d922bd74a0fdde3958c05a743c50dc8281b5db74b593a020e5d1d65677e645a2a262bb873c523765ba7274b359ec9eaf7442db7caf5e5fdf28

    • SSDEEP

      12288:Nh8Rq5U2PEmcWW3xXTTj3AehvfRFfYUjgyRnNRuc5VPMqS7hqpkw3A6YFG:QRq5U2PEmcWWJTTkeh3/fJzqhygS

    Score
    10/10
    redlineinfostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine payload

    • Detects executables packed with ConfuserEx Mod

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks