General
-
Target
a184f0d6294948cad6b57e861127de13.exe
-
Size
344KB
-
Sample
210117-bxc3esx16j
-
MD5
a184f0d6294948cad6b57e861127de13
-
SHA1
e1a234e7979a498826a6a789ae31efb2348a770f
-
SHA256
93ce38eba1ad110f1c5ba6bb7ab636828673fa9525e010a930e52ac424309c06
-
SHA512
59aa57b2af7702a41233001455d7c54df8f4ed97aa6d7afb5d920004b5170a9e5afe9c928e17dc05703893362ad89b6bf92c31bb3e80a86d070f4aafca487e04
Static task
static1
Behavioral task
behavioral1
Sample
a184f0d6294948cad6b57e861127de13.exe
Resource
win7v20201028
Behavioral task
behavioral2
Sample
a184f0d6294948cad6b57e861127de13.exe
Resource
win10v20201028
Malware Config
Targets
-
-
Target
a184f0d6294948cad6b57e861127de13.exe
-
Size
344KB
-
MD5
a184f0d6294948cad6b57e861127de13
-
SHA1
e1a234e7979a498826a6a789ae31efb2348a770f
-
SHA256
93ce38eba1ad110f1c5ba6bb7ab636828673fa9525e010a930e52ac424309c06
-
SHA512
59aa57b2af7702a41233001455d7c54df8f4ed97aa6d7afb5d920004b5170a9e5afe9c928e17dc05703893362ad89b6bf92c31bb3e80a86d070f4aafca487e04
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-