MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 327b57cbed520413cf30d9090a54a462d045df4ef798faa1b4fb02a8ff75d5bd. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry



RedLineStealer


Vendor detections: 4


Intelligence 4 IOCs YARA File information Comments

SHA256 hash: 327b57cbed520413cf30d9090a54a462d045df4ef798faa1b4fb02a8ff75d5bd
SHA3-384 hash: e4b51b04144a2dfec992df8e52159a573b8e5f81cb1a8c0562c2f4c01cae72757b352a91268f0d06175b73582afed2a0
SHA1 hash: 6e7773a3e1687726e02a0c8e9ca43642b4c03310
MD5 hash: 434cf0421d9a52a7c22b5fb78cd5aa15
humanhash: louisiana-quiet-december-april
File name:SquirrelsFlow_beta.zip
Download: download sample
Signature RedLineStealer
File size:946'140 bytes
First seen:2022-09-14 08:28:54 UTC
Last seen:Never
File type: zip
MIME type:application/zip
ssdeep 24576:PNGo2ieird5T3xZ3QyWTQrFKFFQBP79crk1s/tFOMDooxXnohaJ:1GpiJd1I6PeIQHobhM
TLSH T19615234E293632346229A4EB9E8E8C741B3CBDA5A1BF159D3F249CDDF1B51C1D392E04
TrID 80.0% (.ZIP) ZIP compressed archive (4000/1)
20.0% (.PG/BIN) PrintFox/Pagefox bitmap (640x800) (1000/1)
Reporter @Iamdeadlyz
Tags:exe RedLineStealer SquirrelsFlow zip


Twitter
@Iamdeadlyz
Password: 76UK-JD25
C&C: 77.73.134.5:30812

Intelligence


File Origin
# of uploads :
1
# of downloads :
2'040
Origin country :
n/a
Mail intelligence
No data
Vendor Threat Intelligence

File information


The table below shows additional information about this malware sample such as delivery method and external references.

Web download

RedLineStealer

zip 327b57cbed520413cf30d9090a54a462d045df4ef798faa1b4fb02a8ff75d5bd

(this sample)

  
Delivery method
Distributed via web download

Comments