Overview

overview

10

Static

static

3

b22a261a95...21.exe

windows7-x64

3

b22a261a95...21.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b4792486ac09c1902013d0c0de8b8c8e.bin

  • Size

    378KB

  • Sample

    240625-cxkewayhmr

  • MD5

    4addf1ae16de02aad541c7d7a00feda6

  • SHA1

    de76b0fc562fecbed400acfc5138b852ec89c602

  • SHA256

    5cc866c61ab83c08edd4b4cede7b84cf0999e82045831689980890f49fbc0241

  • SHA512

    af4f2a8a663a2795320d774f501fec4f23e45991073bc2796923e7da6381b2057103cae8add535fc618a820cb40321f88844aba25b3f4e5a8c0c23d4d9ffbc1b

  • SSDEEP

    6144:OiWGWxZsv1R7xqVH4dqaTXXnuqoRYN5QjY1i+cms1x32UpJV+IiEhRZIha620AzR:iTsv1nqV+TXXn+Rteps332UpCBEhRZ0a

Score
10/10
redlineinfostealer

Malware Config

Targets

    • Target

      b22a261a95c5dbf0fb467208d1b9d1d6654193a6d5fa269b6cc19286ab69a521.exe

    • Size

      466KB

    • MD5

      b4792486ac09c1902013d0c0de8b8c8e

    • SHA1

      d9147425676b0ab2abdb23f27ecf724d512ed747

    • SHA256

      b22a261a95c5dbf0fb467208d1b9d1d6654193a6d5fa269b6cc19286ab69a521

    • SHA512

      42c70ba881e5115c697d3eb0b294442dd30f911d5b81166cfe328f4ec2246fb17c8d27e133fbba8ad9d025d996416a9f81385c937d0582eefcd62fdcf33dc681

    • SSDEEP

      12288:75wPhUnJuKYwmU0iFPgkX0jcLNCcQNy24:75uOnJNmc7X0wdU

    Score
    10/10
    redlineinfostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine payload

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks