General
-
Target
SecuriteInfo.com.Trojan.PWS.Siggen2.61899.6544.29541
-
Size
205KB
-
Sample
210317-h5s9cw4kp2
-
MD5
ecd8ffbea7663996b2d7298bb3088e6a
-
SHA1
0f57aa1bbdca911955036057ea54ccc3a4eb45e2
-
SHA256
541eea3db458d43683da16a81d5d9edc6c0b020008a5a3314ba624a4339917a3
-
SHA512
a9de3f8adca174dd9f1322c8236c0d0ce601335cb61c6be06a61c7c66ef7cc5a6ddfb0bedcf1c00520a1b45ec3c6e21c7d55b4a5a2b3dbb277dcaaa386c20d9d
Static task
static1
Behavioral task
behavioral1
Sample
SecuriteInfo.com.Trojan.PWS.Siggen2.61899.6544.29541.exe
Resource
win7v20201028
Behavioral task
behavioral2
Sample
SecuriteInfo.com.Trojan.PWS.Siggen2.61899.6544.29541.exe
Resource
win10v20201028
Malware Config
Targets
-
-
Target
SecuriteInfo.com.Trojan.PWS.Siggen2.61899.6544.29541
-
Size
205KB
-
MD5
ecd8ffbea7663996b2d7298bb3088e6a
-
SHA1
0f57aa1bbdca911955036057ea54ccc3a4eb45e2
-
SHA256
541eea3db458d43683da16a81d5d9edc6c0b020008a5a3314ba624a4339917a3
-
SHA512
a9de3f8adca174dd9f1322c8236c0d0ce601335cb61c6be06a61c7c66ef7cc5a6ddfb0bedcf1c00520a1b45ec3c6e21c7d55b4a5a2b3dbb277dcaaa386c20d9d
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-