General
-
Target
48623927974684ecd17a72188d96718062ddf55693d60b0765be2ace45360621
-
Size
370KB
-
Sample
211015-v4fz5sbbg8
-
MD5
2216bf50e3638af79752dd18fd8c8563
-
SHA1
083111c6a0d43b90a73dfd4a8f6f577f1358439c
-
SHA256
48623927974684ecd17a72188d96718062ddf55693d60b0765be2ace45360621
-
SHA512
aa6bf7b28597d0b6607fb01d39bcc26a3701ea0c761075077a32009cb4a841362623fef196971f43d58499dbbed5cb5d0602c911171b77a3d4eb8399608c65c8
Static task
static1
Malware Config
Extracted
redline
PUB
45.9.20.182:52236
Targets
-
-
Target
48623927974684ecd17a72188d96718062ddf55693d60b0765be2ace45360621
-
Size
370KB
-
MD5
2216bf50e3638af79752dd18fd8c8563
-
SHA1
083111c6a0d43b90a73dfd4a8f6f577f1358439c
-
SHA256
48623927974684ecd17a72188d96718062ddf55693d60b0765be2ace45360621
-
SHA512
aa6bf7b28597d0b6607fb01d39bcc26a3701ea0c761075077a32009cb4a841362623fef196971f43d58499dbbed5cb5d0602c911171b77a3d4eb8399608c65c8
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Accesses cryptocurrency files/wallets, possible credential harvesting
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-