General
-
Target
e60dc758c46b5011adb77dd1cd032e563068a47b268b483421d515583ae2e8ea
-
Size
369KB
-
Sample
211015-3bhl9sbeh9
-
MD5
c4fdab0de4e035cf383208e30ef433c8
-
SHA1
de5a068ff2406039539c20661631bd68decdc814
-
SHA256
e60dc758c46b5011adb77dd1cd032e563068a47b268b483421d515583ae2e8ea
-
SHA512
9141c469811e8a76d4ceee5ce063e60a655e8bb4445dc0c2a7562ed86141456d99611d1e531dee8ea2deed8135e555d6f3c9fa7276256bc348f0d2b34b7f6358
Static task
static1
Malware Config
Extracted
redline
PUB
45.9.20.182:52236
Targets
-
-
Target
e60dc758c46b5011adb77dd1cd032e563068a47b268b483421d515583ae2e8ea
-
Size
369KB
-
MD5
c4fdab0de4e035cf383208e30ef433c8
-
SHA1
de5a068ff2406039539c20661631bd68decdc814
-
SHA256
e60dc758c46b5011adb77dd1cd032e563068a47b268b483421d515583ae2e8ea
-
SHA512
9141c469811e8a76d4ceee5ce063e60a655e8bb4445dc0c2a7562ed86141456d99611d1e531dee8ea2deed8135e555d6f3c9fa7276256bc348f0d2b34b7f6358
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Accesses cryptocurrency files/wallets, possible credential harvesting
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-