General
-
Target
728371bb5d045ca3add58622e40016c41dd3ce16c06528a9406f4f06feb32209
-
Size
551KB
-
Sample
241110-d71qaasjcl
-
MD5
c07a375cfc2687fba2fcd2f992d5a9ea
-
SHA1
2c9cef2675ce7abbc77b598a2b22ccb1dcd8754f
-
SHA256
728371bb5d045ca3add58622e40016c41dd3ce16c06528a9406f4f06feb32209
-
SHA512
fd950945ff66eaa4539a757aeb5b46d01746baad26cd37b0c1beaf9a569388a3482169771dc0d66b9a56ca6e0da6a965824c36e3a41b92fc32c8ce84d243401a
-
SSDEEP
12288:NMrVy90zLh+uxWUVysYnVDEjN60bEgt6tak7xAF7h4i:oyE+cVgNMlb3t6on
Static task
static1
Behavioral task
behavioral1
Sample
728371bb5d045ca3add58622e40016c41dd3ce16c06528a9406f4f06feb32209.exe
Resource
win10v2004-20241007-en
Malware Config
Extracted
redline
fusa
193.233.20.12:4132
-
auth_value
a08b2f01bd2af756e38c5dd60e87e697
Targets
-
-
Target
728371bb5d045ca3add58622e40016c41dd3ce16c06528a9406f4f06feb32209
-
Size
551KB
-
MD5
c07a375cfc2687fba2fcd2f992d5a9ea
-
SHA1
2c9cef2675ce7abbc77b598a2b22ccb1dcd8754f
-
SHA256
728371bb5d045ca3add58622e40016c41dd3ce16c06528a9406f4f06feb32209
-
SHA512
fd950945ff66eaa4539a757aeb5b46d01746baad26cd37b0c1beaf9a569388a3482169771dc0d66b9a56ca6e0da6a965824c36e3a41b92fc32c8ce84d243401a
-
SSDEEP
12288:NMrVy90zLh+uxWUVysYnVDEjN60bEgt6tak7xAF7h4i:oyE+cVgNMlb3t6on
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
Redline family
-
Executes dropped EXE
-
Adds Run key to start application
-