General
-
Target
a49e26e0123a672fa858f14a3496c953e9bb213e2882bb9bc6b421835b03f089
-
Size
297KB
-
Sample
241109-28bdsathqj
-
MD5
054f277da927149730280bde3d6ea1f5
-
SHA1
b019e19aa721b515ee3da54b10d8b9c2e5d5d980
-
SHA256
a49e26e0123a672fa858f14a3496c953e9bb213e2882bb9bc6b421835b03f089
-
SHA512
f6ca17996fe09cb349793a4c2ea7d5b14b9b906bfb453326546bc351504c8a94d58136ee8f949ea41203ce36dd566d31a4368a4ff52d0a4d28cb7e5857326861
-
SSDEEP
6144:0uK8l/UgwEFsEowdjsRN7h008K6/mHqVKDak/fro5KJKyPzpy757+dl9hzi:Z9MgwEyEvd4RNy0R0mHqsJfkKJvpk7ss
Static task
static1
Behavioral task
behavioral1
Sample
8dd0d9e0c0e090920ad6f7c4ad2a5ded5a422e20399c64cf82d71f9a7e5ddba4.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
8dd0d9e0c0e090920ad6f7c4ad2a5ded5a422e20399c64cf82d71f9a7e5ddba4.exe
Resource
win10v2004-20241007-en
Malware Config
Extracted
redline
@2023@New
91.215.85.155:32796
-
auth_value
0be5b9b84cd5b707e91a48e341e3f7d7
Targets
-
-
Target
8dd0d9e0c0e090920ad6f7c4ad2a5ded5a422e20399c64cf82d71f9a7e5ddba4
-
Size
398KB
-
MD5
d7e874d5b3708caffc413813febcafa2
-
SHA1
dfa3b2a8ed875c44b76548f8b94f0a789c2236a8
-
SHA256
8dd0d9e0c0e090920ad6f7c4ad2a5ded5a422e20399c64cf82d71f9a7e5ddba4
-
SHA512
d4221db9dcd646e09c82421cc6e80268a571fee95ddd963e981c9b5a0362a9f35c0c19663a79f45e78f3cc95cc17af302ca0c23474684b1b0baca242fc019fee
-
SSDEEP
6144:GLyBoFsmowdxsHN7h008a6/mHqVKDaSTfp58xQ3xDPkMo5zXbAc:G2Cymvd2HNy0T0mHqsVp58xaxDPyrbA
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
Redline family
-