General
-
Target
465985035e8cacee39c2559fa5f66391847f539108adf542a345d59ea27ed1fe
-
Size
394KB
-
Sample
241111-l8hj4axgkk
-
MD5
f9eeefcc885cb8b0ff1ad1d45bf077f2
-
SHA1
e1f6fea8ae7e57f2590be29ddb46b3f17471d95f
-
SHA256
465985035e8cacee39c2559fa5f66391847f539108adf542a345d59ea27ed1fe
-
SHA512
f8827f21a78666565a7e9758802beadc8b72d63bf53d79be0b473f15989cf45af425abff3878c85571efd5e42c10cc44c50be143127d9471526a12198b59f6ca
-
SSDEEP
6144:JvY/hfaNsYeaDDHBYolh5nkRAnlEJa7xwZ124+JXerMchss+x1UkUV:iht/a3HuUMRu7xw7f+h/wss+ck
Static task
static1
Behavioral task
behavioral1
Sample
465985035e8cacee39c2559fa5f66391847f539108adf542a345d59ea27ed1fe.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
465985035e8cacee39c2559fa5f66391847f539108adf542a345d59ea27ed1fe.exe
Resource
win10v2004-20241007-en
Malware Config
Extracted
redline
asia
45.9.20.240:46257
-
auth_value
218353fc70f3440d970e02bf6e2edeb1
Targets
-
-
Target
465985035e8cacee39c2559fa5f66391847f539108adf542a345d59ea27ed1fe
-
Size
394KB
-
MD5
f9eeefcc885cb8b0ff1ad1d45bf077f2
-
SHA1
e1f6fea8ae7e57f2590be29ddb46b3f17471d95f
-
SHA256
465985035e8cacee39c2559fa5f66391847f539108adf542a345d59ea27ed1fe
-
SHA512
f8827f21a78666565a7e9758802beadc8b72d63bf53d79be0b473f15989cf45af425abff3878c85571efd5e42c10cc44c50be143127d9471526a12198b59f6ca
-
SSDEEP
6144:JvY/hfaNsYeaDDHBYolh5nkRAnlEJa7xwZ124+JXerMchss+x1UkUV:iht/a3HuUMRu7xw7f+h/wss+ck
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
Redline family
-