Overview

overview

10

Static

static

3

cryptolaemus

windows10-2004-x64

10

cryptolaemus

windows11-21h2-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    3a5967d873dcc077b07ed29f967f1cdd4dd0c5ad728e4f9acd8a20abc5cc9917

  • Size

    707KB

  • Sample

    240726-ej8xesybqc

  • MD5

    1940e28952cff0c50f1e273a753a6fa9

  • SHA1

    48ab1633599f0aff1421927aed7ca3854a137348

  • SHA256

    3a5967d873dcc077b07ed29f967f1cdd4dd0c5ad728e4f9acd8a20abc5cc9917

  • SHA512

    7034914b3f7588b42ce94d8a6dd593946ffa7408e27e3ccba9b75776a77f42358553f09a5171a468a4aa64ee6ced3970d7758fddefe9fd4a54933973f5faff23

  • SSDEEP

    12288:yg7AIDQUi3bDia+UqgsTKs0Q5D72565m1pOxHiMoTJggjihQTTml/PYpXJWSKBdg:yKBDQr3KfgcKDsf/OTMoTJLGd4wSKAdN

Score
10/10
redlinediscoveryinfostealer

Malware Config

Targets

    • Target

      3a5967d873dcc077b07ed29f967f1cdd4dd0c5ad728e4f9acd8a20abc5cc9917

    • Size

      707KB

    • MD5

      1940e28952cff0c50f1e273a753a6fa9

    • SHA1

      48ab1633599f0aff1421927aed7ca3854a137348

    • SHA256

      3a5967d873dcc077b07ed29f967f1cdd4dd0c5ad728e4f9acd8a20abc5cc9917

    • SHA512

      7034914b3f7588b42ce94d8a6dd593946ffa7408e27e3ccba9b75776a77f42358553f09a5171a468a4aa64ee6ced3970d7758fddefe9fd4a54933973f5faff23

    • SSDEEP

      12288:yg7AIDQUi3bDia+UqgsTKs0Q5D72565m1pOxHiMoTJggjihQTTml/PYpXJWSKBdg:yKBDQr3KfgcKDsf/OTMoTJLGd4wSKAdN

    Score
    10/10
    redlinediscoveryinfostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine payload

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks