General
-
Target
6a8d28a147ebac138b2e6ee3f8566f11136288cc255ef80daf209319264da79e
-
Size
418KB
-
Sample
211017-2hba4achf6
-
MD5
7ca45f1ae24d0a51403b83bb7970a7e9
-
SHA1
25e0a60c17010117a2ac7bbf21fd954966a362ed
-
SHA256
6a8d28a147ebac138b2e6ee3f8566f11136288cc255ef80daf209319264da79e
-
SHA512
eabbf6b315256268dce4d1f552c4e9888b66de3a08a7426df9a1a0f1f75a6aa68c9647f3bf2e8eadea528eb34e81d9aa3b2ed6bf6664a361551ba4ac035cc6d6
Malware Config
Extracted
redline
sewPalp
185.215.113.29:24645
Targets
-
-
Target
6a8d28a147ebac138b2e6ee3f8566f11136288cc255ef80daf209319264da79e
-
Size
418KB
-
MD5
7ca45f1ae24d0a51403b83bb7970a7e9
-
SHA1
25e0a60c17010117a2ac7bbf21fd954966a362ed
-
SHA256
6a8d28a147ebac138b2e6ee3f8566f11136288cc255ef80daf209319264da79e
-
SHA512
eabbf6b315256268dce4d1f552c4e9888b66de3a08a7426df9a1a0f1f75a6aa68c9647f3bf2e8eadea528eb34e81d9aa3b2ed6bf6664a361551ba4ac035cc6d6
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-