General
-
Target
f8fee34062ed9260cef5044d9ceb99c3d092339ab01a196f90c61d12b6722d8a
-
Size
272KB
-
Sample
241110-gn455stqel
-
MD5
2b8640a1b88e79c2819ed409b6e6feb8
-
SHA1
6f837994b947df3079476da3008a59357a6bf21a
-
SHA256
f8fee34062ed9260cef5044d9ceb99c3d092339ab01a196f90c61d12b6722d8a
-
SHA512
af185681bcb5aa0b7dab22fbc26d7816062324f2cb98dbee9930afd06e1ba79bc61492773776a0b79d7b2594fa2eb7e7ad53cc34c6de7fe3a06f7b799b682bc9
-
SSDEEP
3072:B6jIELf6FDTCLkYxJw6qxYgcgpiiSo40jm8dAhTrnz5XD1NxNn2pU9f2MKTV/wiV:B6jodYx9cYKpzwAAh3nzgT
Behavioral task
behavioral1
Sample
f8fee34062ed9260cef5044d9ceb99c3d092339ab01a196f90c61d12b6722d8a.exe
Resource
win7-20240729-en
Behavioral task
behavioral2
Sample
f8fee34062ed9260cef5044d9ceb99c3d092339ab01a196f90c61d12b6722d8a.exe
Resource
win10v2004-20241007-en
Malware Config
Extracted
redline
ruma
193.233.20.13:4136
-
auth_value
647d00dfaba082a4a30f383bca5d1a2a
Targets
-
-
Target
f8fee34062ed9260cef5044d9ceb99c3d092339ab01a196f90c61d12b6722d8a
-
Size
272KB
-
MD5
2b8640a1b88e79c2819ed409b6e6feb8
-
SHA1
6f837994b947df3079476da3008a59357a6bf21a
-
SHA256
f8fee34062ed9260cef5044d9ceb99c3d092339ab01a196f90c61d12b6722d8a
-
SHA512
af185681bcb5aa0b7dab22fbc26d7816062324f2cb98dbee9930afd06e1ba79bc61492773776a0b79d7b2594fa2eb7e7ad53cc34c6de7fe3a06f7b799b682bc9
-
SSDEEP
3072:B6jIELf6FDTCLkYxJw6qxYgcgpiiSo40jm8dAhTrnz5XD1NxNn2pU9f2MKTV/wiV:B6jodYx9cYKpzwAAh3nzgT
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
Redline family
-