General
-
Target
8d9b92523635d2a7593ba0eae82a4d301b4d7c8d5fde9732e32a6a09bff4ce1d
-
Size
366KB
-
Sample
211015-t1eggabhbq
-
MD5
a8b4e3106fe02b369ece99335ae5ac01
-
SHA1
c7c2eb03d62da30e00e253274abcb926fae4797e
-
SHA256
8d9b92523635d2a7593ba0eae82a4d301b4d7c8d5fde9732e32a6a09bff4ce1d
-
SHA512
1d4ebc0e87d3b74934d28d8cb246a73b1bc0f7d2dd0d1e9657121c04bbbea2b9f9664f27ef917353c8bcba029883a36835fb1e2087fa523a6d2b1970707109ac
Static task
static1
Malware Config
Extracted
redline
sewPalp
185.215.113.29:24645
Targets
-
-
Target
8d9b92523635d2a7593ba0eae82a4d301b4d7c8d5fde9732e32a6a09bff4ce1d
-
Size
366KB
-
MD5
a8b4e3106fe02b369ece99335ae5ac01
-
SHA1
c7c2eb03d62da30e00e253274abcb926fae4797e
-
SHA256
8d9b92523635d2a7593ba0eae82a4d301b4d7c8d5fde9732e32a6a09bff4ce1d
-
SHA512
1d4ebc0e87d3b74934d28d8cb246a73b1bc0f7d2dd0d1e9657121c04bbbea2b9f9664f27ef917353c8bcba029883a36835fb1e2087fa523a6d2b1970707109ac
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-