Overview

overview

10

Static

static

10

Libraries/...52.dll

windows7-x64

1

Libraries/...52.dll

windows10-2004-x64

1

Libraries/GuiLib.dll

windows7-x64

1

Libraries/GuiLib.dll

windows10-2004-x64

1

Libraries/...UI.dll

windows7-x64

1

Libraries/...UI.dll

windows10-2004-x64

1

Libraries/...db.dll

windows7-x64

1

Libraries/...db.dll

windows10-2004-x64

1

Libraries/...db.dll

windows7-x64

1

Libraries/...db.dll

windows10-2004-x64

1

Libraries/...ks.dll

windows7-x64

1

Libraries/...ks.dll

windows10-2004-x64

1

Libraries/...il.dll

windows7-x64

1

Libraries/...il.dll

windows10-2004-x64

1

Libraries/...on.dll

windows7-x64

1

Libraries/...on.dll

windows10-2004-x64

1

Libraries/...ls.dll

windows7-x64

1

Libraries/...ls.dll

windows10-2004-x64

1

Libraries/...en.dll

windows7-x64

1

Libraries/...en.dll

windows10-2004-x64

1

Libraries/...ib.dll

windows7-x64

1

Libraries/...ib.dll

windows10-2004-x64

1

Libraries/builder.exe

windows7-x64

3

Libraries/builder.exe

windows10-2004-x64

3

Libraries/...et.dll

windows7-x64

1

Libraries/...et.dll

windows10-2004-x64

1

OpenPort.bat

windows7-x64

8

OpenPort.bat

windows10-2004-x64

8

RedLine.Ma...ed.exe

windows7-x64

3

RedLine.Ma...ed.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    149s
  • max time network
    153s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20241007-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
  • submitted
    07-12-2024 15:52

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Libraries/RedLine.SharedModels.dll

  • Size

    29KB

  • MD5

    bee2969583715bfa584d073ac8d98c42

  • SHA1

    37d1221ce6bb82e7ad08fd22bd13592815a23468

  • SHA256

    5f92db78e43986f063632fb2cfafdce73e5e7e64979900783ca9a00016933375

  • SHA512

    5c139b81a51477d8362be2bf72b9f2425d54ef67b4ad715fbe8aa11f8a57435abb7f23a7ecaee18611e559d1006c0df5dd3427b6e7c3caed38d8cffd79e4bb1c

  • SSDEEP

    768:OqYS91uYM7KwU+QJDqnCz2iiMkM16dTS:OqYSqfOwTgDqnLZMn16NS

Score
1/10

Malware Config

Signatures

Processes

  • C:\Windows\system32\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\Libraries\RedLine.SharedModels.dll,#1
    1⤵
      PID:2652

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads