General
-
Target
Redline Stealer.rar
-
Size
1.9MB
-
Sample
240629-w21gfawdmj
-
MD5
804930714f5da20e35e42cd74c195a4e
-
SHA1
bbb8cd45f3a8504e40d832bf6edd6befa0f21da2
-
SHA256
1aa6211a075d828327681307b51741b8c931514c1a387fb45f9d9cc8fcfb8acd
-
SHA512
cf36e07550531e4683a13bd9903c3bc24fc2a7937837160963e6afd63f120bd0b78d7b9c576f356e954b5fe6dfe2857957c71dc31d100d8cc824495333679e30
-
SSDEEP
49152:cGgYV/h2P1tXK/zYhv/5B+sE1Icb+ehyl30ynqkL:cGge2PzXK/e//+sE1da31L
Behavioral task
behavioral1
Sample
Redline Stealer.rar
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
Redline Stealer.rar
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
Redline Stealer.rar
-
Size
1.9MB
-
MD5
804930714f5da20e35e42cd74c195a4e
-
SHA1
bbb8cd45f3a8504e40d832bf6edd6befa0f21da2
-
SHA256
1aa6211a075d828327681307b51741b8c931514c1a387fb45f9d9cc8fcfb8acd
-
SHA512
cf36e07550531e4683a13bd9903c3bc24fc2a7937837160963e6afd63f120bd0b78d7b9c576f356e954b5fe6dfe2857957c71dc31d100d8cc824495333679e30
-
SSDEEP
49152:cGgYV/h2P1tXK/zYhv/5B+sE1Icb+ehyl30ynqkL:cGge2PzXK/e//+sE1da31L
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
Modifies Windows Firewall
-
Executes dropped EXE
-
Loads dropped DLL
-