General
-
Target
49abe2c7030e508c4cf662f9655b2435f815f7f5
-
Size
407KB
-
Sample
241111-bz4e4aynfx
-
MD5
b7c34b378276a044325dd0de38146e88
-
SHA1
49abe2c7030e508c4cf662f9655b2435f815f7f5
-
SHA256
f85a9e47ae0571b8bed9a2934dcc7ddcadc8c38028aa2c859b328f8063e76dd5
-
SHA512
6329912d095458ed6c2c6d886e2689c392dcf6fb905cdf4ed7f39d608e438bb99b8724816c1e155ef9b1b9a6ceaf068223f1c61593919ce14b937f9ceca55c02
-
SSDEEP
12288:DVin8X/43iC7ZoAcrmLqQBbZeLpIEaASEhe:/43iC7u10ZvEa+e
Static task
static1
Behavioral task
behavioral1
Sample
49abe2c7030e508c4cf662f9655b2435f815f7f5.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
49abe2c7030e508c4cf662f9655b2435f815f7f5.exe
Resource
win10v2004-20241007-en
Malware Config
Extracted
redline
ww
193.106.191.67:44400
-
auth_value
5a1b28ccd05953f5c3f99729c12427cc
Targets
-
-
Target
49abe2c7030e508c4cf662f9655b2435f815f7f5
-
Size
407KB
-
MD5
b7c34b378276a044325dd0de38146e88
-
SHA1
49abe2c7030e508c4cf662f9655b2435f815f7f5
-
SHA256
f85a9e47ae0571b8bed9a2934dcc7ddcadc8c38028aa2c859b328f8063e76dd5
-
SHA512
6329912d095458ed6c2c6d886e2689c392dcf6fb905cdf4ed7f39d608e438bb99b8724816c1e155ef9b1b9a6ceaf068223f1c61593919ce14b937f9ceca55c02
-
SSDEEP
12288:DVin8X/43iC7ZoAcrmLqQBbZeLpIEaASEhe:/43iC7u10ZvEa+e
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
Redline family
-