General
-
Target
b88a4d7375974eaf52423fbe1c19bbd9c7f3409193e28a058f56ce7ef4d30277
-
Size
369KB
-
Sample
211016-cfhvqacdfj
-
MD5
4d5ea6a99167b21dfb9e48ca861c5be6
-
SHA1
64fadea388a88cac2a2490ddb2c86b12bcb5995d
-
SHA256
b88a4d7375974eaf52423fbe1c19bbd9c7f3409193e28a058f56ce7ef4d30277
-
SHA512
63b55444ea6cb519a8dadbbc18cbe2335552d64e03b75be64f0ab545800d3cc91783fbffb2f51c14531a8696e77000141c09c70c4166751dd97709ec87d9afcc
Static task
static1
Malware Config
Extracted
redline
sewPalp
185.215.113.29:24645
Targets
-
-
Target
b88a4d7375974eaf52423fbe1c19bbd9c7f3409193e28a058f56ce7ef4d30277
-
Size
369KB
-
MD5
4d5ea6a99167b21dfb9e48ca861c5be6
-
SHA1
64fadea388a88cac2a2490ddb2c86b12bcb5995d
-
SHA256
b88a4d7375974eaf52423fbe1c19bbd9c7f3409193e28a058f56ce7ef4d30277
-
SHA512
63b55444ea6cb519a8dadbbc18cbe2335552d64e03b75be64f0ab545800d3cc91783fbffb2f51c14531a8696e77000141c09c70c4166751dd97709ec87d9afcc
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-