General
-
Target
4912148d5763e83a19cdce7724992532cd636680
-
Size
373KB
-
Sample
241111-hknjnaykhk
-
MD5
4d80baf6ec019ad2b615d1ea4ee1336a
-
SHA1
4912148d5763e83a19cdce7724992532cd636680
-
SHA256
b04fa9f919334ddd03f873e7f1e6184501582aa244e3211da3f50a19eebc5523
-
SHA512
2189ebdfcc2c836610d6fafedadd95dac73bf6422f335454e76c620f95af08c6300c22b629b39d76981751e7de3da8d00865252afb97b2dd7a0de9b874140211
-
SSDEEP
3072:jVhrEgErb0hccROgaRK4lc2Zk+ra+0lEgEVYn8b42lLhl1TLeWCdwW5e8f1pN2B:LEgGgNc9pTmlE8MBLhuWHi1p0
Static task
static1
Behavioral task
behavioral1
Sample
4912148d5763e83a19cdce7724992532cd636680.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
4912148d5763e83a19cdce7724992532cd636680.exe
Resource
win10v2004-20241007-en
Malware Config
Extracted
redline
ww
193.106.191.67:44400
-
auth_value
5a1b28ccd05953f5c3f99729c12427cc
Targets
-
-
Target
4912148d5763e83a19cdce7724992532cd636680
-
Size
373KB
-
MD5
4d80baf6ec019ad2b615d1ea4ee1336a
-
SHA1
4912148d5763e83a19cdce7724992532cd636680
-
SHA256
b04fa9f919334ddd03f873e7f1e6184501582aa244e3211da3f50a19eebc5523
-
SHA512
2189ebdfcc2c836610d6fafedadd95dac73bf6422f335454e76c620f95af08c6300c22b629b39d76981751e7de3da8d00865252afb97b2dd7a0de9b874140211
-
SSDEEP
3072:jVhrEgErb0hccROgaRK4lc2Zk+ra+0lEgEVYn8b42lLhl1TLeWCdwW5e8f1pN2B:LEgGgNc9pTmlE8MBLhuWHi1p0
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
Redline family
-