General
-
Target
6f4f7db0f95e16b745df4034d1b2dc00N.exe
-
Size
684KB
-
Sample
240727-achdnswgqe
-
MD5
6f4f7db0f95e16b745df4034d1b2dc00
-
SHA1
3a791995b4e6dccf55d2ebc63af8688aa2b40bfe
-
SHA256
034d5d766b238babd10e5d830ed4cdf7e89a4101a6b5ac562207bc1462216e36
-
SHA512
019866af4b6cc07c0b6eac17248247700eecfa3fdc60907f0ce6383e3a4abc28de4e6acc21c3dd2d0b0b224c95c70de397ee740fdd50c8aafa5a1ef8cc39470e
-
SSDEEP
12288:4nADcvRLJ9/qrXlUe2GL34GdQId1YWZzp6fnXCLNGMqsmGAmR:rgZt9/qri3G7Q5Ap6P45mZ
Static task
static1
Behavioral task
behavioral1
Sample
6f4f7db0f95e16b745df4034d1b2dc00N.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
6f4f7db0f95e16b745df4034d1b2dc00N.exe
Resource
win10v2004-20240709-en
Malware Config
Targets
-
-
Target
6f4f7db0f95e16b745df4034d1b2dc00N.exe
-
Size
684KB
-
MD5
6f4f7db0f95e16b745df4034d1b2dc00
-
SHA1
3a791995b4e6dccf55d2ebc63af8688aa2b40bfe
-
SHA256
034d5d766b238babd10e5d830ed4cdf7e89a4101a6b5ac562207bc1462216e36
-
SHA512
019866af4b6cc07c0b6eac17248247700eecfa3fdc60907f0ce6383e3a4abc28de4e6acc21c3dd2d0b0b224c95c70de397ee740fdd50c8aafa5a1ef8cc39470e
-
SSDEEP
12288:4nADcvRLJ9/qrXlUe2GL34GdQId1YWZzp6fnXCLNGMqsmGAmR:rgZt9/qri3G7Q5Ap6P45mZ
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
Suspicious use of SetThreadContext
-