General
-
Target
13c78d4f6f88ea869425f3294923ff54275a3c558522e288d4fcf8e61e7ea158
-
Size
366KB
-
Sample
211015-sd558sbger
-
MD5
478384ff0e15108a2c32bb55ca3ef333
-
SHA1
4fa99636654b868af142f12f7004cccacc26a66f
-
SHA256
13c78d4f6f88ea869425f3294923ff54275a3c558522e288d4fcf8e61e7ea158
-
SHA512
1fc1268d887eb772ebe9d7ab8551b2ef95d52912a0107958964308410fefc963331d04f12fa49ba34fd9468c3679ccb536c5e93dbb4372ca9cd0b31f89bea5bf
Static task
static1
Malware Config
Extracted
redline
sewPalp
185.215.113.29:24645
Targets
-
-
Target
13c78d4f6f88ea869425f3294923ff54275a3c558522e288d4fcf8e61e7ea158
-
Size
366KB
-
MD5
478384ff0e15108a2c32bb55ca3ef333
-
SHA1
4fa99636654b868af142f12f7004cccacc26a66f
-
SHA256
13c78d4f6f88ea869425f3294923ff54275a3c558522e288d4fcf8e61e7ea158
-
SHA512
1fc1268d887eb772ebe9d7ab8551b2ef95d52912a0107958964308410fefc963331d04f12fa49ba34fd9468c3679ccb536c5e93dbb4372ca9cd0b31f89bea5bf
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-