General
-
Target
df0266988ff1368bfe6593ad4d88e0dddad22a8847abef8e9626aaa17878b556
-
Size
434KB
-
Sample
241111-mxy85syelg
-
MD5
bf8aa5c08fc12dd499976dd9b6196c27
-
SHA1
29bd670e2d18a642fcd3e9f87bb3934bd89eedd0
-
SHA256
df0266988ff1368bfe6593ad4d88e0dddad22a8847abef8e9626aaa17878b556
-
SHA512
5ba442425968ca2bfaee42eac95be49b2af9404d19e879fb87f4900f328787eb558021cab7d24893eb9f1e54287aac779c5e250803177f4635e6d3a46e4548db
-
SSDEEP
6144:z6b0HLLvfYOGa7hFs+TMrSwRoSIPbYVMoNr/psoF3736O1GdkT3TBNht:b6avJMvoS6bgMoNr/psoFr36O+kT3F
Static task
static1
Behavioral task
behavioral1
Sample
df0266988ff1368bfe6593ad4d88e0dddad22a8847abef8e9626aaa17878b556.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
df0266988ff1368bfe6593ad4d88e0dddad22a8847abef8e9626aaa17878b556.exe
Resource
win10v2004-20241007-en
Malware Config
Extracted
redline
asia
45.9.20.240:46257
-
auth_value
218353fc70f3440d970e02bf6e2edeb1
Targets
-
-
Target
df0266988ff1368bfe6593ad4d88e0dddad22a8847abef8e9626aaa17878b556
-
Size
434KB
-
MD5
bf8aa5c08fc12dd499976dd9b6196c27
-
SHA1
29bd670e2d18a642fcd3e9f87bb3934bd89eedd0
-
SHA256
df0266988ff1368bfe6593ad4d88e0dddad22a8847abef8e9626aaa17878b556
-
SHA512
5ba442425968ca2bfaee42eac95be49b2af9404d19e879fb87f4900f328787eb558021cab7d24893eb9f1e54287aac779c5e250803177f4635e6d3a46e4548db
-
SSDEEP
6144:z6b0HLLvfYOGa7hFs+TMrSwRoSIPbYVMoNr/psoF3736O1GdkT3TBNht:b6avJMvoS6bgMoNr/psoFr36O+kT3F
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
Redline family
-