General
-
Target
76cdd6cf7a99236fb72a16db5bd23af79a1d42f6db924aefecc6314a73776054
-
Size
433KB
-
Sample
241107-h3pjnsxhpg
-
MD5
c3842666eb41889f4c327266a2d28d66
-
SHA1
9d7ec6163fbe39542eac5c062ec8c190841d6e05
-
SHA256
76cdd6cf7a99236fb72a16db5bd23af79a1d42f6db924aefecc6314a73776054
-
SHA512
b2504497cb5d68a01ac575a0d6a37208a8f115f70b793c225c89c4ab7922df3c7702c50a08c8897b31a3078b003919308bd98f83d3ff13bcf0ebacfe0451dec2
-
SSDEEP
6144:Kxy+bnr+Cp0yN90QEPQ0WHWC+dbx1A59C7ai4Y3HaBWAeDMLu5/z8mSmw4:bMrGy90OWCWbxy59C7a3Y3PfMLmWml
Static task
static1
Behavioral task
behavioral1
Sample
76cdd6cf7a99236fb72a16db5bd23af79a1d42f6db924aefecc6314a73776054.exe
Resource
win10v2004-20241007-en
Malware Config
Extracted
redline
rodik
193.233.20.23:4124
-
auth_value
59b6e22e7cfd9b5fa0c99d1942f7c85d
Targets
-
-
Target
76cdd6cf7a99236fb72a16db5bd23af79a1d42f6db924aefecc6314a73776054
-
Size
433KB
-
MD5
c3842666eb41889f4c327266a2d28d66
-
SHA1
9d7ec6163fbe39542eac5c062ec8c190841d6e05
-
SHA256
76cdd6cf7a99236fb72a16db5bd23af79a1d42f6db924aefecc6314a73776054
-
SHA512
b2504497cb5d68a01ac575a0d6a37208a8f115f70b793c225c89c4ab7922df3c7702c50a08c8897b31a3078b003919308bd98f83d3ff13bcf0ebacfe0451dec2
-
SSDEEP
6144:Kxy+bnr+Cp0yN90QEPQ0WHWC+dbx1A59C7ai4Y3HaBWAeDMLu5/z8mSmw4:bMrGy90OWCWbxy59C7a3Y3PfMLmWml
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
Redline family
-
Executes dropped EXE
-
Adds Run key to start application
-