General

  • Target

    9cf3fb267bae4374fc871ac0c7a01cc99cc51e0342692aa8730a4415928de133.exe

  • Size

    2.1MB

  • Sample

    241209-q6dwcazles

  • MD5

    396b829cf9e2e9ff8dd029a418d1f383

  • SHA1

    a4a555781f284f90fcb2342e2f25bdbf85902b64

  • SHA256

    9cf3fb267bae4374fc871ac0c7a01cc99cc51e0342692aa8730a4415928de133

  • SHA512

    d6283ac089476b81a651890ef6e2c9e5bb853110b1d922c1165750c02d74fd3f32758ce63f5c6df79c7fdd8b6f8eda3ca59c759d6df5375f5e7d6a1218f5bce6

  • SSDEEP

    24576:65KWm2JAR0Y13tn/mcL+LLnxVF6a9Dhvh1zk4VOxO:65Kf0Y13tn/Z+x6a3vHnVOk

Malware Config

Targets

    • Target

      9cf3fb267bae4374fc871ac0c7a01cc99cc51e0342692aa8730a4415928de133.exe

    • Size

      2.1MB

    • MD5

      396b829cf9e2e9ff8dd029a418d1f383

    • SHA1

      a4a555781f284f90fcb2342e2f25bdbf85902b64

    • SHA256

      9cf3fb267bae4374fc871ac0c7a01cc99cc51e0342692aa8730a4415928de133

    • SHA512

      d6283ac089476b81a651890ef6e2c9e5bb853110b1d922c1165750c02d74fd3f32758ce63f5c6df79c7fdd8b6f8eda3ca59c759d6df5375f5e7d6a1218f5bce6

    • SSDEEP

      24576:65KWm2JAR0Y13tn/mcL+LLnxVF6a9Dhvh1zk4VOxO:65Kf0Y13tn/Z+x6a3vHnVOk

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks