General
-
Target
92a10218dc7cd4220f2571f0925174ccc460b4cf25a30290b98975ed32b5621c
-
Size
440KB
-
Sample
241111-fcxfgssmby
-
MD5
43f3f9d20d6bc7086dc0afeb62ceab11
-
SHA1
626c8c5ddf14f92e1cadddb72424030c15636d46
-
SHA256
92a10218dc7cd4220f2571f0925174ccc460b4cf25a30290b98975ed32b5621c
-
SHA512
7b8eed1084a539d5111631b5704c61f336fef7b987f2c2167a146a40a2f79e7ffdf21bb4bcde67bc187c6ce58a8a17884c975091aae6c7a1c8cba7ec5556aafc
-
SSDEEP
12288:NMrcy907TR5OIiBn6nM33HBBrZiHf3AqGb5Nulhd3/t:FyQbdknL3H4FG/ahJ/t
Static task
static1
Behavioral task
behavioral1
Sample
92a10218dc7cd4220f2571f0925174ccc460b4cf25a30290b98975ed32b5621c.exe
Resource
win10v2004-20241007-en
Malware Config
Extracted
redline
rodik
193.233.20.23:4124
-
auth_value
59b6e22e7cfd9b5fa0c99d1942f7c85d
Targets
-
-
Target
92a10218dc7cd4220f2571f0925174ccc460b4cf25a30290b98975ed32b5621c
-
Size
440KB
-
MD5
43f3f9d20d6bc7086dc0afeb62ceab11
-
SHA1
626c8c5ddf14f92e1cadddb72424030c15636d46
-
SHA256
92a10218dc7cd4220f2571f0925174ccc460b4cf25a30290b98975ed32b5621c
-
SHA512
7b8eed1084a539d5111631b5704c61f336fef7b987f2c2167a146a40a2f79e7ffdf21bb4bcde67bc187c6ce58a8a17884c975091aae6c7a1c8cba7ec5556aafc
-
SSDEEP
12288:NMrcy907TR5OIiBn6nM33HBBrZiHf3AqGb5Nulhd3/t:FyQbdknL3H4FG/ahJ/t
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
Redline family
-
Executes dropped EXE
-
Adds Run key to start application
-