General
-
Target
a0ac6ab52c2fb61b5e63f2a3db4042179ea5d5632c89963eef879644d81fe671N.exe
-
Size
372KB
-
Sample
241112-x18l4azalb
-
MD5
adf6d607bb4061c5316163c72c6d9370
-
SHA1
6bc52066ab784c02437c98cdd654f4a1a108d40a
-
SHA256
a0ac6ab52c2fb61b5e63f2a3db4042179ea5d5632c89963eef879644d81fe671
-
SHA512
efd619575d9bc754b0fcf9d6aad80ceaaf434d728d53fdee555e3761c175c09dff89367c45a51ec62ec4bf0ae0e5cd9f40580ae004de20eb2a4a4acf8297cabe
-
SSDEEP
6144:aXZehGNaMik3J9Zw1Ju/qMy+QZBLXLpIKKav6Tr+YVaW:aXZehG4Bk3J9Zwbu/qMKZNvGDB
Static task
static1
Behavioral task
behavioral1
Sample
a0ac6ab52c2fb61b5e63f2a3db4042179ea5d5632c89963eef879644d81fe671N.exe
Resource
win7-20241023-en
Behavioral task
behavioral2
Sample
a0ac6ab52c2fb61b5e63f2a3db4042179ea5d5632c89963eef879644d81fe671N.exe
Resource
win10v2004-20241007-en
Malware Config
Extracted
redline
rosn
176.113.115.145:4125
-
auth_value
050a19e1db4d0024b0f23b37dcf961f4
Targets
-
-
Target
a0ac6ab52c2fb61b5e63f2a3db4042179ea5d5632c89963eef879644d81fe671N.exe
-
Size
372KB
-
MD5
adf6d607bb4061c5316163c72c6d9370
-
SHA1
6bc52066ab784c02437c98cdd654f4a1a108d40a
-
SHA256
a0ac6ab52c2fb61b5e63f2a3db4042179ea5d5632c89963eef879644d81fe671
-
SHA512
efd619575d9bc754b0fcf9d6aad80ceaaf434d728d53fdee555e3761c175c09dff89367c45a51ec62ec4bf0ae0e5cd9f40580ae004de20eb2a4a4acf8297cabe
-
SSDEEP
6144:aXZehGNaMik3J9Zw1Ju/qMy+QZBLXLpIKKav6Tr+YVaW:aXZehG4Bk3J9Zwbu/qMKZNvGDB
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
Redline family
-