General
-
Target
a2663103c5e89d427b3b6bf2b7a8e2d0f54adbb8b90f78555bd8ca1f78eed17d
-
Size
439KB
-
Sample
241106-txeytstgll
-
MD5
7dd2b89f1b1fe6ebf1804f4633b06a56
-
SHA1
ab285c3eca9fcda4b17e872c840b4a963160fa13
-
SHA256
a2663103c5e89d427b3b6bf2b7a8e2d0f54adbb8b90f78555bd8ca1f78eed17d
-
SHA512
6ac418c664d4805e381776974f04884684f8c5de7b79410437240db3c9413e2191ac087d6e9e0349267a8efec99fabd94a84d6c064642d3d4c180e371edee11b
-
SSDEEP
12288:cMrxy90dJNCUA/bU7wJiKNcIWvLbhXtm:lysN9Uo7GiKSIWLFtm
Static task
static1
Behavioral task
behavioral1
Sample
a2663103c5e89d427b3b6bf2b7a8e2d0f54adbb8b90f78555bd8ca1f78eed17d.exe
Resource
win10v2004-20241007-en
Malware Config
Extracted
redline
rodik
193.233.20.23:4124
-
auth_value
59b6e22e7cfd9b5fa0c99d1942f7c85d
Targets
-
-
Target
a2663103c5e89d427b3b6bf2b7a8e2d0f54adbb8b90f78555bd8ca1f78eed17d
-
Size
439KB
-
MD5
7dd2b89f1b1fe6ebf1804f4633b06a56
-
SHA1
ab285c3eca9fcda4b17e872c840b4a963160fa13
-
SHA256
a2663103c5e89d427b3b6bf2b7a8e2d0f54adbb8b90f78555bd8ca1f78eed17d
-
SHA512
6ac418c664d4805e381776974f04884684f8c5de7b79410437240db3c9413e2191ac087d6e9e0349267a8efec99fabd94a84d6c064642d3d4c180e371edee11b
-
SSDEEP
12288:cMrxy90dJNCUA/bU7wJiKNcIWvLbhXtm:lysN9Uo7GiKSIWLFtm
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
Redline family
-
Executes dropped EXE
-
Adds Run key to start application
-