MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 49c661839ee07875c6c14a5c65e59fabbed428d0f45168da9011e1feb21db55b. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry



RedLineStealer


Vendor detections: 3


Intelligence 3 IOCs YARA File information Comments

SHA256 hash: 49c661839ee07875c6c14a5c65e59fabbed428d0f45168da9011e1feb21db55b
SHA3-384 hash: 4f2b20b23373715974f48afbc410c9ae36e6ffcfd1e176ec9ad852492c8a58d197f22004784712de9ab449f8072b487d
SHA1 hash: 11f1754d8cba26ac848ea572942095d1f0a720c0
MD5 hash: 5b2bac392ae2670e575a9dcac38a164d
humanhash: california-orange-maryland-three
File name:Shadow_Ages_2D_sketches.zip
Download: download sample
Signature RedLineStealer
File size:4'652'933 bytes
First seen:2022-09-13 14:04:29 UTC
Last seen:Never
File type: zip
MIME type:application/zip
ssdeep 98304:j/KPT0t2jXLG01pG66NC9hedi2AZHHcNrww5WTRzPnxMlcyVBGbXBcb/s:bK4gbLG0TG66NsEs2A1H60wgTZauyi17
TLSH T137263333D38F1DAE4922051436872B6007D1A24F2E7BDA774A3A5569373D5CBAA1F03E
TrID 80.0% (.ZIP) ZIP compressed archive (4000/1)
20.0% (.PG/BIN) PrintFox/Pagefox bitmap (640x800) (1000/1)
Reporter @Iamdeadlyz
Tags:exe pif RedLineStealer ShadowAges2D zip


Twitter
@Iamdeadlyz
Password: U16G-CBPG
C&C: 77.73.134.5:30812

Intelligence


File Origin
# of uploads :
1
# of downloads :
1'564
Origin country :
n/a
Mail intelligence
No data
Vendor Threat Intelligence

File information


The table below shows additional information about this malware sample such as delivery method and external references.

Web download

RedLineStealer

zip 49c661839ee07875c6c14a5c65e59fabbed428d0f45168da9011e1feb21db55b

(this sample)

  
Delivery method
Distributed via web download

Comments