General
-
Target
e21c3f97602f78b0d1619549050fb20fc68dbdaec681c3bbee226a7d2ca8876d
-
Size
364KB
-
Sample
241106-1kvl3syclh
-
MD5
5dd3491fc38d3a6883b27c7ac4b072b9
-
SHA1
3c3f2c49e8d141d12ec4c0afef78b6336c14fb56
-
SHA256
e21c3f97602f78b0d1619549050fb20fc68dbdaec681c3bbee226a7d2ca8876d
-
SHA512
bbe3888cd786b45a3ff4eb4b7211c17ee624ef27ddb89e2d2b2ff48c350a20b4e2d67b0175257f93ab6affcf7242b6e7c0a99cd37202e1d5adc94900542b3854
-
SSDEEP
6144:eEaXBUcN2BRrn1fH0N6GkBut5adsSEK69yDPhSjYlakxjTLVqoARRSTZAPdg+:/aRDNoVJKRtUdsSEK69yDPhSjYlakxjv
Behavioral task
behavioral1
Sample
e21c3f97602f78b0d1619549050fb20fc68dbdaec681c3bbee226a7d2ca8876d.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
e21c3f97602f78b0d1619549050fb20fc68dbdaec681c3bbee226a7d2ca8876d.exe
Resource
win10v2004-20241007-en
Malware Config
Extracted
redline
0002
13.72.81.58:13413
-
auth_value
866ce0ed8cfe2be77fb43a4912677698
Targets
-
-
Target
e21c3f97602f78b0d1619549050fb20fc68dbdaec681c3bbee226a7d2ca8876d
-
Size
364KB
-
MD5
5dd3491fc38d3a6883b27c7ac4b072b9
-
SHA1
3c3f2c49e8d141d12ec4c0afef78b6336c14fb56
-
SHA256
e21c3f97602f78b0d1619549050fb20fc68dbdaec681c3bbee226a7d2ca8876d
-
SHA512
bbe3888cd786b45a3ff4eb4b7211c17ee624ef27ddb89e2d2b2ff48c350a20b4e2d67b0175257f93ab6affcf7242b6e7c0a99cd37202e1d5adc94900542b3854
-
SSDEEP
6144:eEaXBUcN2BRrn1fH0N6GkBut5adsSEK69yDPhSjYlakxjTLVqoARRSTZAPdg+:/aRDNoVJKRtUdsSEK69yDPhSjYlakxjv
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
Redline family
-