General
-
Target
227098943a98a4b4bdd209a9544a9b974f2660f0fd3f5ec680c12f05f562389e
-
Size
273KB
-
Sample
241106-xky3qaxrgj
-
MD5
2dddbd98f5b983dadb765ffbaf32d0bb
-
SHA1
0aac915a5c3c24b60b827fdc29ef5228536c86aa
-
SHA256
227098943a98a4b4bdd209a9544a9b974f2660f0fd3f5ec680c12f05f562389e
-
SHA512
df27e9b5dce6953aed3fc049fe99708118c9914404e21e383a7fc67c80d917379a9bfda1f7e14fc31931e884e818aa879a6719c9e4c130ca03fa0c51fb226584
-
SSDEEP
6144:j8qL1OPq9S9LzZB4z16XgrVVED7jgxr23r3VwGB:oqcPq9S1ZB4z1+grAD3gxib9
Static task
static1
Behavioral task
behavioral1
Sample
227098943a98a4b4bdd209a9544a9b974f2660f0fd3f5ec680c12f05f562389e.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
227098943a98a4b4bdd209a9544a9b974f2660f0fd3f5ec680c12f05f562389e.exe
Resource
win10v2004-20241007-en
Malware Config
Extracted
redline
asia
45.9.20.240:46257
-
auth_value
218353fc70f3440d970e02bf6e2edeb1
Targets
-
-
Target
227098943a98a4b4bdd209a9544a9b974f2660f0fd3f5ec680c12f05f562389e
-
Size
273KB
-
MD5
2dddbd98f5b983dadb765ffbaf32d0bb
-
SHA1
0aac915a5c3c24b60b827fdc29ef5228536c86aa
-
SHA256
227098943a98a4b4bdd209a9544a9b974f2660f0fd3f5ec680c12f05f562389e
-
SHA512
df27e9b5dce6953aed3fc049fe99708118c9914404e21e383a7fc67c80d917379a9bfda1f7e14fc31931e884e818aa879a6719c9e4c130ca03fa0c51fb226584
-
SSDEEP
6144:j8qL1OPq9S9LzZB4z16XgrVVED7jgxr23r3VwGB:oqcPq9S1ZB4z1+grAD3gxib9
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
Redline family
-