General
-
Target
2cef9d04f815600498050ad85a4593fbec7dc3e3
-
Size
364KB
-
Sample
241109-erphrawqcs
-
MD5
3732db8e92f26fa8588c6da128374a19
-
SHA1
2cef9d04f815600498050ad85a4593fbec7dc3e3
-
SHA256
1b8323e22651cc64786525aa5e0c781a2166856e27f82731fa9b12eba83e5770
-
SHA512
23003f956b1f6312f67ba9f1c92b6c872526c18f7f6e5b0912078d3e78085007fe675e712bbdaf96439d2a7d2c02a6e8ffb8839dc76c018e9a8776b504eb571a
-
SSDEEP
6144:eEaXBUcN2BRrn1fH0N6GkBut5adsSEK69yDPhSjYlakxjTLVqoARRSTZAPdg+:/aRDNoVJKRtUdsSEK69yDPhSjYlakxjv
Behavioral task
behavioral1
Sample
2cef9d04f815600498050ad85a4593fbec7dc3e3.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
2cef9d04f815600498050ad85a4593fbec7dc3e3.exe
Resource
win10v2004-20241007-en
Malware Config
Extracted
redline
0002
13.72.81.58:13413
-
auth_value
866ce0ed8cfe2be77fb43a4912677698
Targets
-
-
Target
2cef9d04f815600498050ad85a4593fbec7dc3e3
-
Size
364KB
-
MD5
3732db8e92f26fa8588c6da128374a19
-
SHA1
2cef9d04f815600498050ad85a4593fbec7dc3e3
-
SHA256
1b8323e22651cc64786525aa5e0c781a2166856e27f82731fa9b12eba83e5770
-
SHA512
23003f956b1f6312f67ba9f1c92b6c872526c18f7f6e5b0912078d3e78085007fe675e712bbdaf96439d2a7d2c02a6e8ffb8839dc76c018e9a8776b504eb571a
-
SSDEEP
6144:eEaXBUcN2BRrn1fH0N6GkBut5adsSEK69yDPhSjYlakxjTLVqoARRSTZAPdg+:/aRDNoVJKRtUdsSEK69yDPhSjYlakxjv
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
Redline family
-