General
-
Target
facac3de496d9a60c7dc2aa80fbc6449f3e5e7510a10706c5d550233c92246e6
-
Size
432KB
-
Sample
241105-3j1g2stncq
-
MD5
98f5781865c921dbc46f86a56468c036
-
SHA1
7d79d4f30ece40d524531e95f07187db3e2810b2
-
SHA256
facac3de496d9a60c7dc2aa80fbc6449f3e5e7510a10706c5d550233c92246e6
-
SHA512
d63160cd1f825a72e9dec8c6e459d775a69f5add28192d0d08779f1fd9a4dd4ea0cb59e5b9b93f07f1f6efbdd101714b729c1964280de1d9ff0e922d04d38bba
-
SSDEEP
6144:yGO9Zbg+pdyt8LlZuPpTOl2eV7pw5fq22bM0harV83KpzZWK3g2tF0:VO91g+pdytWZucV2E3harS3KpMK3g2T
Static task
static1
Behavioral task
behavioral1
Sample
facac3de496d9a60c7dc2aa80fbc6449f3e5e7510a10706c5d550233c92246e6.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
facac3de496d9a60c7dc2aa80fbc6449f3e5e7510a10706c5d550233c92246e6.exe
Resource
win10v2004-20241007-en
Malware Config
Extracted
redline
asia
45.9.20.240:46257
-
auth_value
218353fc70f3440d970e02bf6e2edeb1
Targets
-
-
Target
facac3de496d9a60c7dc2aa80fbc6449f3e5e7510a10706c5d550233c92246e6
-
Size
432KB
-
MD5
98f5781865c921dbc46f86a56468c036
-
SHA1
7d79d4f30ece40d524531e95f07187db3e2810b2
-
SHA256
facac3de496d9a60c7dc2aa80fbc6449f3e5e7510a10706c5d550233c92246e6
-
SHA512
d63160cd1f825a72e9dec8c6e459d775a69f5add28192d0d08779f1fd9a4dd4ea0cb59e5b9b93f07f1f6efbdd101714b729c1964280de1d9ff0e922d04d38bba
-
SSDEEP
6144:yGO9Zbg+pdyt8LlZuPpTOl2eV7pw5fq22bM0harV83KpzZWK3g2tF0:VO91g+pdytWZucV2E3harS3KpMK3g2T
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
Redline family
-