General
-
Target
bdd1313dd95210752d1a577f32f588713d391ace9e1a84f5981ec47903fcc375
-
Size
731KB
-
Sample
241108-q4rdnatcrn
-
MD5
96642e31df550f79f3a27c2a7fefd742
-
SHA1
e7341d318f4ced2c9a5586436d877327dd28e3dc
-
SHA256
bdd1313dd95210752d1a577f32f588713d391ace9e1a84f5981ec47903fcc375
-
SHA512
765a191a9e51d356f2cde3c638c2f9ca29a0a10b266158595a11f1753a2963797ea9a922a49b3c8cdc79e2e12b46b171d2fb49ae664fea20e97860deca1e2f1b
-
SSDEEP
12288:uMrPy90czhqxmPySBjBhNWWAwDWM0Hd+JVbbN0zP5Kh78RE4I1+Zv9fzhRM:ZyXFqxmPyGhuwksH/N0zq7zO9hRM
Static task
static1
Behavioral task
behavioral1
Sample
bdd1313dd95210752d1a577f32f588713d391ace9e1a84f5981ec47903fcc375.exe
Resource
win10v2004-20241007-en
Malware Config
Extracted
redline
dars
83.97.73.127:19045
-
auth_value
7cd208e6b6c927262304d5d4d88647fd
Targets
-
-
Target
bdd1313dd95210752d1a577f32f588713d391ace9e1a84f5981ec47903fcc375
-
Size
731KB
-
MD5
96642e31df550f79f3a27c2a7fefd742
-
SHA1
e7341d318f4ced2c9a5586436d877327dd28e3dc
-
SHA256
bdd1313dd95210752d1a577f32f588713d391ace9e1a84f5981ec47903fcc375
-
SHA512
765a191a9e51d356f2cde3c638c2f9ca29a0a10b266158595a11f1753a2963797ea9a922a49b3c8cdc79e2e12b46b171d2fb49ae664fea20e97860deca1e2f1b
-
SSDEEP
12288:uMrPy90czhqxmPySBjBhNWWAwDWM0Hd+JVbbN0zP5Kh78RE4I1+Zv9fzhRM:ZyXFqxmPyGhuwksH/N0zq7zO9hRM
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
Redline family
-
Executes dropped EXE
-
Adds Run key to start application
-