General
-
Target
847f76a458eabd5246c19d333d383c79898307d0873f883ce8e90c0df2005bca
-
Size
366KB
-
Sample
211015-rvrthabaf8
-
MD5
251ac54c23a3031f4cfcfb6555968018
-
SHA1
447efd1f76c3e0a90e8b134b606a3d8bf7d3f42c
-
SHA256
847f76a458eabd5246c19d333d383c79898307d0873f883ce8e90c0df2005bca
-
SHA512
7c38832e976e64895f25ec123aa35b5146c0b5c8ab46e7cad6c772c6b07bc4f9d421ac0a62e3a7790490c35dd3c50dd47a20b25e2b6530edca1a103cf0fcb201
Static task
static1
Malware Config
Extracted
redline
sewPalp
185.215.113.29:24645
Targets
-
-
Target
847f76a458eabd5246c19d333d383c79898307d0873f883ce8e90c0df2005bca
-
Size
366KB
-
MD5
251ac54c23a3031f4cfcfb6555968018
-
SHA1
447efd1f76c3e0a90e8b134b606a3d8bf7d3f42c
-
SHA256
847f76a458eabd5246c19d333d383c79898307d0873f883ce8e90c0df2005bca
-
SHA512
7c38832e976e64895f25ec123aa35b5146c0b5c8ab46e7cad6c772c6b07bc4f9d421ac0a62e3a7790490c35dd3c50dd47a20b25e2b6530edca1a103cf0fcb201
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-