General
-
Target
57c3fa5cc282a2386a64b9bf612077783dad6a5ee6e92ca4ad9a31683f5408f3
-
Size
318KB
-
Sample
211014-hsydtsgcbl
-
MD5
8ab692860ca322d15e3a5c1a5946bbe0
-
SHA1
ad3b6e2cff80f452c3012b8f4592b17f333cde26
-
SHA256
57c3fa5cc282a2386a64b9bf612077783dad6a5ee6e92ca4ad9a31683f5408f3
-
SHA512
d0d99ffc8323d411f742bd7f6186ea8e3e1e04215284e2c1ba51d7dc18c3f7b1b9b6f50e4438601a4ec84af042ba1e235bed04ce4a2d99dc5c71e548fa6cd3c0
Static task
static1
Malware Config
Extracted
redline
sewPalp
185.215.113.29:24645
Targets
-
-
Target
57c3fa5cc282a2386a64b9bf612077783dad6a5ee6e92ca4ad9a31683f5408f3
-
Size
318KB
-
MD5
8ab692860ca322d15e3a5c1a5946bbe0
-
SHA1
ad3b6e2cff80f452c3012b8f4592b17f333cde26
-
SHA256
57c3fa5cc282a2386a64b9bf612077783dad6a5ee6e92ca4ad9a31683f5408f3
-
SHA512
d0d99ffc8323d411f742bd7f6186ea8e3e1e04215284e2c1ba51d7dc18c3f7b1b9b6f50e4438601a4ec84af042ba1e235bed04ce4a2d99dc5c71e548fa6cd3c0
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-