General
-
Target
7a992852c677c4db57fc784f9a8118900f03bc2e3f2ca77f1b8954bb293cebb8
-
Size
549KB
-
Sample
241109-1ty1vstbke
-
MD5
f4e173076419c2ae77957e1ad18948d1
-
SHA1
aa86bd2193a8057f8ca2a6a6ed7ea94ce4fa20e9
-
SHA256
7a992852c677c4db57fc784f9a8118900f03bc2e3f2ca77f1b8954bb293cebb8
-
SHA512
a4097a9df328a1ea6781373d83441878c6f15b9830ab087e217c74b2e3688796aeee2b243c3b196acf3a305f191f62ee250c18e05db0d996c1e30aecb2346c98
-
SSDEEP
12288:LMr/y90DGgh616ShLOEjwkP24FC1d1HjWHaZP:wyj16uhjG44d1Hf
Static task
static1
Behavioral task
behavioral1
Sample
7a992852c677c4db57fc784f9a8118900f03bc2e3f2ca77f1b8954bb293cebb8.exe
Resource
win10v2004-20241007-en
Malware Config
Extracted
redline
fusa
193.233.20.12:4132
-
auth_value
a08b2f01bd2af756e38c5dd60e87e697
Targets
-
-
Target
7a992852c677c4db57fc784f9a8118900f03bc2e3f2ca77f1b8954bb293cebb8
-
Size
549KB
-
MD5
f4e173076419c2ae77957e1ad18948d1
-
SHA1
aa86bd2193a8057f8ca2a6a6ed7ea94ce4fa20e9
-
SHA256
7a992852c677c4db57fc784f9a8118900f03bc2e3f2ca77f1b8954bb293cebb8
-
SHA512
a4097a9df328a1ea6781373d83441878c6f15b9830ab087e217c74b2e3688796aeee2b243c3b196acf3a305f191f62ee250c18e05db0d996c1e30aecb2346c98
-
SSDEEP
12288:LMr/y90DGgh616ShLOEjwkP24FC1d1HjWHaZP:wyj16uhjG44d1Hf
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
Redline family
-
Executes dropped EXE
-
Adds Run key to start application
-