General
-
Target
b420a864c1a0c089a874dba604973954
-
Size
364KB
-
Sample
241107-tbkbesxpaq
-
MD5
b420a864c1a0c089a874dba604973954
-
SHA1
e0a795d1acb9a00e3a0cb5bb2f1489281182419c
-
SHA256
d80e9a555365a895184eef7e41ea98e3786ad5b5fce97bb1fe96a6a819eb183b
-
SHA512
b1a84777346fa1c70c1466a65e58d3d7858d8e30a1cd0e441eb962df41ecef1bfc1c7820a3f63cc4df6edf2561d9c8519542e7abdad1d1d18b06a7de1fb0e31e
-
SSDEEP
6144:eEaXBUcN2BRrn1fH0N6GkBut5adsSEK69yDPhSjYlakxjTLVqoARRSTZAPdg+:/aRDNoVJKRtUdsSEK69yDPhSjYlakxjv
Behavioral task
behavioral1
Sample
b420a864c1a0c089a874dba604973954.exe
Resource
win7-20241023-en
Behavioral task
behavioral2
Sample
b420a864c1a0c089a874dba604973954.exe
Resource
win10v2004-20241007-en
Malware Config
Extracted
redline
0002
13.72.81.58:13413
-
auth_value
866ce0ed8cfe2be77fb43a4912677698
Targets
-
-
Target
b420a864c1a0c089a874dba604973954
-
Size
364KB
-
MD5
b420a864c1a0c089a874dba604973954
-
SHA1
e0a795d1acb9a00e3a0cb5bb2f1489281182419c
-
SHA256
d80e9a555365a895184eef7e41ea98e3786ad5b5fce97bb1fe96a6a819eb183b
-
SHA512
b1a84777346fa1c70c1466a65e58d3d7858d8e30a1cd0e441eb962df41ecef1bfc1c7820a3f63cc4df6edf2561d9c8519542e7abdad1d1d18b06a7de1fb0e31e
-
SSDEEP
6144:eEaXBUcN2BRrn1fH0N6GkBut5adsSEK69yDPhSjYlakxjTLVqoARRSTZAPdg+:/aRDNoVJKRtUdsSEK69yDPhSjYlakxjv
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
Redline family
-