General
-
Target
c249f1e68850d1074d3e7b61480eb173b4a15c1ee1a19829dc28b4035c5ce509
-
Size
360KB
-
Sample
241108-e58tjswaqa
-
MD5
5e57d4ca4615b35a2f74317194161e2d
-
SHA1
b35f2fce55b966213e6f801a11befcc2b0c9a78b
-
SHA256
c249f1e68850d1074d3e7b61480eb173b4a15c1ee1a19829dc28b4035c5ce509
-
SHA512
3befc1826d104d989b0a61fa0b3aa8127d6e2d63d79b759d90734b642d5eb932e2fbc8ec210f728bc4c18d3fd42c8f3c0be9f60b104fe6767e930b71e6fbe3c2
-
SSDEEP
6144:eEaXBUcN2BRrn1fH0N6GkBut5adsSEK69yDPhSjYlakxjTLVqoARRSTZAPdg+:/aRDNoVJKRtUdsSEK69yDPhSjYlakxjv
Behavioral task
behavioral1
Sample
c249f1e68850d1074d3e7b61480eb173b4a15c1ee1a19829dc28b4035c5ce509.exe
Resource
win7-20241023-en
Behavioral task
behavioral2
Sample
c249f1e68850d1074d3e7b61480eb173b4a15c1ee1a19829dc28b4035c5ce509.exe
Resource
win10v2004-20241007-en
Malware Config
Extracted
redline
0002
13.72.81.58:13413
-
auth_value
866ce0ed8cfe2be77fb43a4912677698
Targets
-
-
Target
c249f1e68850d1074d3e7b61480eb173b4a15c1ee1a19829dc28b4035c5ce509
-
Size
360KB
-
MD5
5e57d4ca4615b35a2f74317194161e2d
-
SHA1
b35f2fce55b966213e6f801a11befcc2b0c9a78b
-
SHA256
c249f1e68850d1074d3e7b61480eb173b4a15c1ee1a19829dc28b4035c5ce509
-
SHA512
3befc1826d104d989b0a61fa0b3aa8127d6e2d63d79b759d90734b642d5eb932e2fbc8ec210f728bc4c18d3fd42c8f3c0be9f60b104fe6767e930b71e6fbe3c2
-
SSDEEP
6144:eEaXBUcN2BRrn1fH0N6GkBut5adsSEK69yDPhSjYlakxjTLVqoARRSTZAPdg+:/aRDNoVJKRtUdsSEK69yDPhSjYlakxjv
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
Redline family
-