General
-
Target
f11ae730d29a610db826d78c96c4ce1caf1abe0314b5c6eefafafec18aa88e64
-
Size
549KB
-
Sample
241111-fnve9stbrj
-
MD5
df943a20e85f6cbe3f2d75e0e4c39840
-
SHA1
a18a7d77b5bee528e092481a6bd65ee32ca0efa2
-
SHA256
f11ae730d29a610db826d78c96c4ce1caf1abe0314b5c6eefafafec18aa88e64
-
SHA512
ff8521652fd045a1bc9456d0794fdc18b23f058384431eea10d9cf729c7e644a647fb5fe282bc6a016b666cdec19291090fd67ebbb893d9f7c60bc34ac9b5ee2
-
SSDEEP
12288:wMr8y90ComrzL4pMVyq1sHjhDc9T7nF//uMDjbxtn1n7oTaE:cytzkpOhsHdc5Fn7fn7oTZ
Static task
static1
Behavioral task
behavioral1
Sample
f11ae730d29a610db826d78c96c4ce1caf1abe0314b5c6eefafafec18aa88e64.exe
Resource
win10v2004-20241007-en
Malware Config
Extracted
redline
fusa
193.233.20.12:4132
-
auth_value
a08b2f01bd2af756e38c5dd60e87e697
Targets
-
-
Target
f11ae730d29a610db826d78c96c4ce1caf1abe0314b5c6eefafafec18aa88e64
-
Size
549KB
-
MD5
df943a20e85f6cbe3f2d75e0e4c39840
-
SHA1
a18a7d77b5bee528e092481a6bd65ee32ca0efa2
-
SHA256
f11ae730d29a610db826d78c96c4ce1caf1abe0314b5c6eefafafec18aa88e64
-
SHA512
ff8521652fd045a1bc9456d0794fdc18b23f058384431eea10d9cf729c7e644a647fb5fe282bc6a016b666cdec19291090fd67ebbb893d9f7c60bc34ac9b5ee2
-
SSDEEP
12288:wMr8y90ComrzL4pMVyq1sHjhDc9T7nF//uMDjbxtn1n7oTaE:cytzkpOhsHdc5Fn7fn7oTZ
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
Redline family
-
Executes dropped EXE
-
Adds Run key to start application
-