General
-
Target
f7ea42987617187a4982bb5bd93bd3950b3abfc3818abc6fe43fc2017add7022
-
Size
366KB
-
Sample
211015-p89kcsahh2
-
MD5
3aba7593c8829c0c92061ea6337a58b4
-
SHA1
3f368eb8d7fae2ff93fedbb49a54c15f1e9fda21
-
SHA256
f7ea42987617187a4982bb5bd93bd3950b3abfc3818abc6fe43fc2017add7022
-
SHA512
f636a065adf98574cd73923605a6959823d2e0b5b94ee3af9dfa5bd6ae1bb412888e9b8b38ba6ce4a41d1bdb8e1c4428edde47f6bdd41d6ce8dbdfde4f29253a
Static task
static1
Malware Config
Extracted
redline
sewPalp
185.215.113.29:24645
Targets
-
-
Target
f7ea42987617187a4982bb5bd93bd3950b3abfc3818abc6fe43fc2017add7022
-
Size
366KB
-
MD5
3aba7593c8829c0c92061ea6337a58b4
-
SHA1
3f368eb8d7fae2ff93fedbb49a54c15f1e9fda21
-
SHA256
f7ea42987617187a4982bb5bd93bd3950b3abfc3818abc6fe43fc2017add7022
-
SHA512
f636a065adf98574cd73923605a6959823d2e0b5b94ee3af9dfa5bd6ae1bb412888e9b8b38ba6ce4a41d1bdb8e1c4428edde47f6bdd41d6ce8dbdfde4f29253a
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-