General
-
Target
859f72a60966864a73ca36a119570328d5a769f3e6d8fa11f7b11e0b26fd6f6d
-
Size
283KB
-
Sample
241112-asfj1stlgl
-
MD5
a9d4a2a8ceca8ebd749f57fa5d042321
-
SHA1
faf45b9850d10403ddba30e5eb0c00a4c8c88577
-
SHA256
859f72a60966864a73ca36a119570328d5a769f3e6d8fa11f7b11e0b26fd6f6d
-
SHA512
4a3fea68ae7c65ec9ee8f357a386768c9d82a69a77318751720ad9bdbbd278513a485f3b7cbe61b44ddd5a5c30c961266fbd077fb291dd914ddc5424980f516d
-
SSDEEP
6144:MywfJlo7uQSAQsRgEpv9EBvlCH5DEWG2ycfm:MywfJK7uQLQ2fpvyBvlCH5Dl+
Static task
static1
Behavioral task
behavioral1
Sample
859f72a60966864a73ca36a119570328d5a769f3e6d8fa11f7b11e0b26fd6f6d.exe
Resource
win7-20241010-en
Behavioral task
behavioral2
Sample
859f72a60966864a73ca36a119570328d5a769f3e6d8fa11f7b11e0b26fd6f6d.exe
Resource
win10v2004-20241007-en
Malware Config
Extracted
redline
mango
193.233.20.28:4125
-
auth_value
ecf79d7f5227d998a3501c972d915d23
Targets
-
-
Target
859f72a60966864a73ca36a119570328d5a769f3e6d8fa11f7b11e0b26fd6f6d
-
Size
283KB
-
MD5
a9d4a2a8ceca8ebd749f57fa5d042321
-
SHA1
faf45b9850d10403ddba30e5eb0c00a4c8c88577
-
SHA256
859f72a60966864a73ca36a119570328d5a769f3e6d8fa11f7b11e0b26fd6f6d
-
SHA512
4a3fea68ae7c65ec9ee8f357a386768c9d82a69a77318751720ad9bdbbd278513a485f3b7cbe61b44ddd5a5c30c961266fbd077fb291dd914ddc5424980f516d
-
SSDEEP
6144:MywfJlo7uQSAQsRgEpv9EBvlCH5DEWG2ycfm:MywfJK7uQLQ2fpvyBvlCH5Dl+
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
Redline family
-