General
-
Target
4e622ee626caec7497e89442eeae4083.exe
-
Size
235KB
-
Sample
210205-glaad86c4a
-
MD5
4e622ee626caec7497e89442eeae4083
-
SHA1
39958ce2a0e9c43506a3b796ae7dd94e5317e430
-
SHA256
c4b04c108c2308b1bb0558cf3de4fc2b1357a8c112d7bc38c228874000b8a4bd
-
SHA512
0fbc24f6a3daef01e35dd63b3539b586f483aec8a79e02d8e17001869f73fcd6328787b241549a0ed40c6338b3fff35e6d6af4987699b114bfe59017f485fd88
Static task
static1
Behavioral task
behavioral1
Sample
4e622ee626caec7497e89442eeae4083.exe
Resource
win7v20201028
Behavioral task
behavioral2
Sample
4e622ee626caec7497e89442eeae4083.exe
Resource
win10v20201028
Malware Config
Targets
-
-
Target
4e622ee626caec7497e89442eeae4083.exe
-
Size
235KB
-
MD5
4e622ee626caec7497e89442eeae4083
-
SHA1
39958ce2a0e9c43506a3b796ae7dd94e5317e430
-
SHA256
c4b04c108c2308b1bb0558cf3de4fc2b1357a8c112d7bc38c228874000b8a4bd
-
SHA512
0fbc24f6a3daef01e35dd63b3539b586f483aec8a79e02d8e17001869f73fcd6328787b241549a0ed40c6338b3fff35e6d6af4987699b114bfe59017f485fd88
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-