General

  • Target

    5546a7cd2bdabe0daca28514f4c97c60.exe

  • Size

    344KB

  • Sample

    210116-3wyw6kq8rx

  • MD5

    5546a7cd2bdabe0daca28514f4c97c60

  • SHA1

    a372f6566e96220991cd0aa33263c0ff4bba0654

  • SHA256

    0bcdbd7631575e1764678e07bc71bd824c92c04a783c533891ebf5492f6ce409

  • SHA512

    dfc62d6dac2a963d3862b390ca40c50088adffe36122e10a6c481670849bf3c0d6ac84658c39c600eda8c976a63677571f3fd255fc003b711391e8d228875df6

Malware Config

Targets

    • Target

      5546a7cd2bdabe0daca28514f4c97c60.exe

    • Size

      344KB

    • MD5

      5546a7cd2bdabe0daca28514f4c97c60

    • SHA1

      a372f6566e96220991cd0aa33263c0ff4bba0654

    • SHA256

      0bcdbd7631575e1764678e07bc71bd824c92c04a783c533891ebf5492f6ce409

    • SHA512

      dfc62d6dac2a963d3862b390ca40c50088adffe36122e10a6c481670849bf3c0d6ac84658c39c600eda8c976a63677571f3fd255fc003b711391e8d228875df6

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine Payload

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

MITRE ATT&CK Enterprise v6

Tasks