Overview

overview

10

Static

static

3

416ffbf541...83.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    416ffbf541ec396c711f1553576931c65af849b67158250030f5b94827b3da83.zip

  • Size

    257KB

  • Sample

    250409-tvev2swn14

  • MD5

    e4e2b0f0d6b1f9189590901cf13dc906

  • SHA1

    4560cf0e0075cf80cc9cab5c8679106abcdf8e38

  • SHA256

    a52ba09554566e4ae25d33d6a1e96381bdcf13b89dd77015542db0364df86a92

  • SHA512

    cb2151508b3f24bb6b3fe12bae1542cddb546b4750a697053ce3679d956351fb8f6169d868445869208b6c25c4db7c6531c389f2d62aaeb7c0dd7a522392d715

  • SSDEEP

    6144:u2Hpx35hBPlBg1kXzpqBRR739Bsc3jNDvFVVlIG93IKK7N4e28VhS:uMjRzg1mzp2RR739Bn3jZFVjIG93IPhM

Score
10/10
redlinediscoveryinfostealer

Malware Config

Targets

    • Target

      416ffbf541ec396c711f1553576931c65af849b67158250030f5b94827b3da83.exe

    • Size

      563KB

    • MD5

      04af92ffdf13bc3b98ac14a5c6f752fc

    • SHA1

      24a7dc1c59636ebdb588cdb02d9cb3edb599e395

    • SHA256

      416ffbf541ec396c711f1553576931c65af849b67158250030f5b94827b3da83

    • SHA512

      e548fd5c8875aac68c57a19ce6e8d3afa5292d172b37834b6184975277f46125394e01a135c6ca25e6df736e12101bee1af35485b2e41bbc94ed3a83a5fa006f

    • SSDEEP

      6144:qOIBBrOiOkLJeHIIBRHr+PG0ZZ39MUl63bgxlsKrgq/e9bCmflY:qOe9OiO2I7SPGEtMf387HgHOmK

    Score
    10/10
    redlinediscoveryinfostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine payload

    • Redline family

      redline

    • Uses the VBS compiler for execution

    • Suspicious use of SetThreadContext

    behavioral1

MITRE ATT&CK Enterprise v16

Tasks