General
-
Target
522e6824c8d910bd1dec890eb90ad7ea83d307eb129abaf519bf38681388cae6
-
Size
332KB
-
Sample
241111-gnh8nsthkm
-
MD5
b8134145da7eb1179f071de409fd7129
-
SHA1
2f859633f181d51a189105150848a3d8e9c32030
-
SHA256
522e6824c8d910bd1dec890eb90ad7ea83d307eb129abaf519bf38681388cae6
-
SHA512
0b69e9d619e1ba5e8189d3dfd0009bdc7409c239af9650f4deae853e5e28b767465d2e46941e4dd3bfaf228a84fcfd3c3cbeb45afd4d686041de395d28d76d32
-
SSDEEP
6144:u51LCQ3iXocFh2wXMz716zeY8XsPagqTmmRfMzip4B:u5dr+ocFDc/1K3+sCgqTmww
Static task
static1
Behavioral task
behavioral1
Sample
9980ff61b4b54597cbc2ec2cfe111f78fa461ac0806cf05b5ab18dbc09e8737f.exe
Resource
win10v2004-20241007-en
Malware Config
Targets
-
-
Target
9980ff61b4b54597cbc2ec2cfe111f78fa461ac0806cf05b5ab18dbc09e8737f.exe
-
Size
376KB
-
MD5
e59f30ac820ea021f3fa045aaed4fdf4
-
SHA1
635d53805796a58290d68613fe0f08edee053058
-
SHA256
9980ff61b4b54597cbc2ec2cfe111f78fa461ac0806cf05b5ab18dbc09e8737f
-
SHA512
f2ae729530af105e5ec6bde2a0b6d4a7acef161aab872ad289fbdcd28159d989b493bb0ec44c1f0a0e8d96be7fd005ed302c37015c64d1580468817fae377d3c
-
SSDEEP
6144:Kpy+bnr+5p0yN90QERmWkWanZNdPR5d46kqab7aQUUArvkI15gY2BIzzq:HMrBy90nk4Vqab7dUXrf1j24q
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
Redline family
-
Executes dropped EXE
-
Adds Run key to start application
-