General
-
Target
6521efcc3458085ec79e3a6d7d304dca290cb9e5211d6839c70869b6563465c9
-
Size
551KB
-
Sample
241110-zj5j8atrax
-
MD5
36b81835f2d630608116b2bcde4e883a
-
SHA1
a292429c478619b241a10ad0dec2f29a9de5321a
-
SHA256
6521efcc3458085ec79e3a6d7d304dca290cb9e5211d6839c70869b6563465c9
-
SHA512
365063c3092dfffb900adfe0521236b99eb9aebe527d5362b6771d4cb5a0a04d51920c05e35f46450216b43d54b25d29315dc594d35b76d59af6cf422bbfb5f6
-
SSDEEP
12288:fMruy90YW4lT+V8Y7oZfD0kjHZ0+gtiKkPe8BMQvB:tyv4V5t6HDci0G
Static task
static1
Behavioral task
behavioral1
Sample
6521efcc3458085ec79e3a6d7d304dca290cb9e5211d6839c70869b6563465c9.exe
Resource
win10v2004-20241007-en
Malware Config
Extracted
redline
fusa
193.233.20.12:4132
-
auth_value
a08b2f01bd2af756e38c5dd60e87e697
Targets
-
-
Target
6521efcc3458085ec79e3a6d7d304dca290cb9e5211d6839c70869b6563465c9
-
Size
551KB
-
MD5
36b81835f2d630608116b2bcde4e883a
-
SHA1
a292429c478619b241a10ad0dec2f29a9de5321a
-
SHA256
6521efcc3458085ec79e3a6d7d304dca290cb9e5211d6839c70869b6563465c9
-
SHA512
365063c3092dfffb900adfe0521236b99eb9aebe527d5362b6771d4cb5a0a04d51920c05e35f46450216b43d54b25d29315dc594d35b76d59af6cf422bbfb5f6
-
SSDEEP
12288:fMruy90YW4lT+V8Y7oZfD0kjHZ0+gtiKkPe8BMQvB:tyv4V5t6HDci0G
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
Redline family
-
Executes dropped EXE
-
Adds Run key to start application
-