General
-
Target
210dde18c9a4116848d192680d0448d49d54e33c56fd05ed03b5822381301403
-
Size
551KB
-
Sample
241111-b8qklazcnq
-
MD5
365c59b16707e4b1d19ba0f27ed0e867
-
SHA1
a7b2e2f92a839d7c4f1f343dece9e5efd9f8d208
-
SHA256
210dde18c9a4116848d192680d0448d49d54e33c56fd05ed03b5822381301403
-
SHA512
d6b6f77e1a329cc394c54a309dd1fb78d1dd9d87ae456a8fdb5aa16c15c50e7571a6262fb6a385a645a6892251bddc0f5d47c5e39ef80ef1a291f9e281a5a0e2
-
SSDEEP
12288:nMrky90C8V1HKa6pYhzLFTAYIm3GCvT2Xn1:zyCV0a6ALdAQaX1
Static task
static1
Behavioral task
behavioral1
Sample
210dde18c9a4116848d192680d0448d49d54e33c56fd05ed03b5822381301403.exe
Resource
win10v2004-20241007-en
Malware Config
Extracted
redline
fusa
193.233.20.12:4132
-
auth_value
a08b2f01bd2af756e38c5dd60e87e697
Targets
-
-
Target
210dde18c9a4116848d192680d0448d49d54e33c56fd05ed03b5822381301403
-
Size
551KB
-
MD5
365c59b16707e4b1d19ba0f27ed0e867
-
SHA1
a7b2e2f92a839d7c4f1f343dece9e5efd9f8d208
-
SHA256
210dde18c9a4116848d192680d0448d49d54e33c56fd05ed03b5822381301403
-
SHA512
d6b6f77e1a329cc394c54a309dd1fb78d1dd9d87ae456a8fdb5aa16c15c50e7571a6262fb6a385a645a6892251bddc0f5d47c5e39ef80ef1a291f9e281a5a0e2
-
SSDEEP
12288:nMrky90C8V1HKa6pYhzLFTAYIm3GCvT2Xn1:zyCV0a6ALdAQaX1
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
Redline family
-
Executes dropped EXE
-
Adds Run key to start application
-