General
-
Target
b0a0c2038d93c964c8044da9f281dfdfa660eafcc3f90523746a1bb1b0bcb048
-
Size
394KB
-
Sample
241105-arnt1a1dpr
-
MD5
345c1548355092a33e2824a22d2243df
-
SHA1
f6692bfe141a4e5ee7231537f6b1601e2d994d40
-
SHA256
b0a0c2038d93c964c8044da9f281dfdfa660eafcc3f90523746a1bb1b0bcb048
-
SHA512
7652a36e6675e59d8145d9ca6d3968fbb0a98880dbd4f9281da640e432526f43ef5b371e242ad799c7116af45384c080d87e25fef42b139286bdd0ed3d0c8f13
-
SSDEEP
6144:lPi6qmtILCIkpkM6TocNPoK6PoeZWubwJzOPajIJ+ZMabu0xJMan11zA:l6UWLHkp5In8wJkajQ+eVIJMaQ
Static task
static1
Behavioral task
behavioral1
Sample
b0a0c2038d93c964c8044da9f281dfdfa660eafcc3f90523746a1bb1b0bcb048.exe
Resource
win7-20241010-en
Behavioral task
behavioral2
Sample
b0a0c2038d93c964c8044da9f281dfdfa660eafcc3f90523746a1bb1b0bcb048.exe
Resource
win10v2004-20241007-en
Malware Config
Extracted
redline
asia
45.9.20.240:46257
-
auth_value
218353fc70f3440d970e02bf6e2edeb1
Targets
-
-
Target
b0a0c2038d93c964c8044da9f281dfdfa660eafcc3f90523746a1bb1b0bcb048
-
Size
394KB
-
MD5
345c1548355092a33e2824a22d2243df
-
SHA1
f6692bfe141a4e5ee7231537f6b1601e2d994d40
-
SHA256
b0a0c2038d93c964c8044da9f281dfdfa660eafcc3f90523746a1bb1b0bcb048
-
SHA512
7652a36e6675e59d8145d9ca6d3968fbb0a98880dbd4f9281da640e432526f43ef5b371e242ad799c7116af45384c080d87e25fef42b139286bdd0ed3d0c8f13
-
SSDEEP
6144:lPi6qmtILCIkpkM6TocNPoK6PoeZWubwJzOPajIJ+ZMabu0xJMan11zA:l6UWLHkp5In8wJkajQ+eVIJMaQ
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
Redline family
-