General
-
Target
7c152cd55d188529090b976a2ac8b21716a443891335fc3d0aaac830de8acc78
-
Size
441KB
-
Sample
241111-fr9dlatcmr
-
MD5
f9573e0961477ca8101083a0a6ad73be
-
SHA1
9c7c007bdd61755290deffbf4b48f821cd841f4d
-
SHA256
7c152cd55d188529090b976a2ac8b21716a443891335fc3d0aaac830de8acc78
-
SHA512
f977243ce32ad22a414468b08a7f25df9849ea1e0ebc30848826b9875f59b22e3b94ac036c7f1cbd470dc31a9aa003df4f069cda5cf69a378c19455e5d8e3350
-
SSDEEP
6144:Kiy+bnr+Pp0yN90QE1ZSYt/66NNfxewt+qZb1D2N5a05uUmMPM/eyAac1XxnFT9D:WMrby90t/ySN0hqZZIuiUDPcFT9DH
Static task
static1
Behavioral task
behavioral1
Sample
7c152cd55d188529090b976a2ac8b21716a443891335fc3d0aaac830de8acc78.exe
Resource
win10v2004-20241007-en
Malware Config
Extracted
redline
rodik
193.233.20.23:4124
-
auth_value
59b6e22e7cfd9b5fa0c99d1942f7c85d
Targets
-
-
Target
7c152cd55d188529090b976a2ac8b21716a443891335fc3d0aaac830de8acc78
-
Size
441KB
-
MD5
f9573e0961477ca8101083a0a6ad73be
-
SHA1
9c7c007bdd61755290deffbf4b48f821cd841f4d
-
SHA256
7c152cd55d188529090b976a2ac8b21716a443891335fc3d0aaac830de8acc78
-
SHA512
f977243ce32ad22a414468b08a7f25df9849ea1e0ebc30848826b9875f59b22e3b94ac036c7f1cbd470dc31a9aa003df4f069cda5cf69a378c19455e5d8e3350
-
SSDEEP
6144:Kiy+bnr+Pp0yN90QE1ZSYt/66NNfxewt+qZb1D2N5a05uUmMPM/eyAac1XxnFT9D:WMrby90t/ySN0hqZZIuiUDPcFT9DH
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
Redline family
-
Executes dropped EXE
-
Adds Run key to start application
-