General
-
Target
e1c069750171f5e4b687f3c7b44c11fe86f69c81a28f2f10bad73548707fef06
-
Size
550KB
-
Sample
241110-y3475atmf1
-
MD5
c3202a707b781199a7b306c3c1e22943
-
SHA1
5d9011338126ab35ddbc02e91901352d5568aa53
-
SHA256
e1c069750171f5e4b687f3c7b44c11fe86f69c81a28f2f10bad73548707fef06
-
SHA512
d2228f6d1c640c7fe5f951867af5343ea63458fd9a82cde482f23fe2021fe06448c114a59d1d99ade3981a4a3f6df5ffee6bb56a55109fe021a2c2d18c664e87
-
SSDEEP
12288:6MrHy90uuP4zJByBQ3canUT30w4e/WVMJFh:hy+P4aBQ4T3J4eGMJ/
Static task
static1
Behavioral task
behavioral1
Sample
e1c069750171f5e4b687f3c7b44c11fe86f69c81a28f2f10bad73548707fef06.exe
Resource
win10v2004-20241007-en
Malware Config
Extracted
redline
fusa
193.233.20.12:4132
-
auth_value
a08b2f01bd2af756e38c5dd60e87e697
Targets
-
-
Target
e1c069750171f5e4b687f3c7b44c11fe86f69c81a28f2f10bad73548707fef06
-
Size
550KB
-
MD5
c3202a707b781199a7b306c3c1e22943
-
SHA1
5d9011338126ab35ddbc02e91901352d5568aa53
-
SHA256
e1c069750171f5e4b687f3c7b44c11fe86f69c81a28f2f10bad73548707fef06
-
SHA512
d2228f6d1c640c7fe5f951867af5343ea63458fd9a82cde482f23fe2021fe06448c114a59d1d99ade3981a4a3f6df5ffee6bb56a55109fe021a2c2d18c664e87
-
SSDEEP
12288:6MrHy90uuP4zJByBQ3canUT30w4e/WVMJFh:hy+P4aBQ4T3J4eGMJ/
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
Redline family
-
Executes dropped EXE
-
Adds Run key to start application
-