General
-
Target
c0fe8909c90e158b57a69894a0150026
-
Size
373KB
-
Sample
241109-28g7bstlax
-
MD5
c0fe8909c90e158b57a69894a0150026
-
SHA1
131d9525d7ccab1eb48004ddbb350bbe0a21a4cd
-
SHA256
afe28de8cdf70da0364653dc38d0eb30711d22825d62ad685c4bb062afea190a
-
SHA512
8124ee345913beb7bffad2e04cd0f305a9c65cf8a9efde3a348f93e5e515f153922a9f72947cb462e6dcfa5630aeaaea19084ddfd1a24b52b2a2f984c54f5590
-
SSDEEP
6144:6EgPS+2K5Y0dvG4djhrnpV3yw+dNHpLQOIf+STXg:6EgPS+2ivz3Lix1P6
Static task
static1
Behavioral task
behavioral1
Sample
c0fe8909c90e158b57a69894a0150026.exe
Resource
win7-20241010-en
Behavioral task
behavioral2
Sample
c0fe8909c90e158b57a69894a0150026.exe
Resource
win10v2004-20241007-en
Malware Config
Extracted
redline
ww
193.106.191.67:44400
-
auth_value
5a1b28ccd05953f5c3f99729c12427cc
Targets
-
-
Target
c0fe8909c90e158b57a69894a0150026
-
Size
373KB
-
MD5
c0fe8909c90e158b57a69894a0150026
-
SHA1
131d9525d7ccab1eb48004ddbb350bbe0a21a4cd
-
SHA256
afe28de8cdf70da0364653dc38d0eb30711d22825d62ad685c4bb062afea190a
-
SHA512
8124ee345913beb7bffad2e04cd0f305a9c65cf8a9efde3a348f93e5e515f153922a9f72947cb462e6dcfa5630aeaaea19084ddfd1a24b52b2a2f984c54f5590
-
SSDEEP
6144:6EgPS+2K5Y0dvG4djhrnpV3yw+dNHpLQOIf+STXg:6EgPS+2ivz3Lix1P6
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
Redline family
-