General
-
Target
bb0082ff694be3b6f35fc0ee3c19c19256288d2a1c5b7c46fc8d470f6e16fe5d
-
Size
417KB
-
Sample
211017-w875vsdfbk
-
MD5
21a607cf5a41adeac501d7dc1d350cae
-
SHA1
26bbdc67d1986b1d14a37c3e6d9436a84aa48730
-
SHA256
bb0082ff694be3b6f35fc0ee3c19c19256288d2a1c5b7c46fc8d470f6e16fe5d
-
SHA512
509ec531d6601648f3c691dc2cb283ecc1be1feb8fc1e1c9e570e09ceec16e700fbd8674f44cd3437db01e796d62aa9d1d554ef6406bbbe3bf69f7edbed675f0
Static task
static1
Malware Config
Extracted
redline
sewPalp
185.215.113.29:24645
Targets
-
-
Target
bb0082ff694be3b6f35fc0ee3c19c19256288d2a1c5b7c46fc8d470f6e16fe5d
-
Size
417KB
-
MD5
21a607cf5a41adeac501d7dc1d350cae
-
SHA1
26bbdc67d1986b1d14a37c3e6d9436a84aa48730
-
SHA256
bb0082ff694be3b6f35fc0ee3c19c19256288d2a1c5b7c46fc8d470f6e16fe5d
-
SHA512
509ec531d6601648f3c691dc2cb283ecc1be1feb8fc1e1c9e570e09ceec16e700fbd8674f44cd3437db01e796d62aa9d1d554ef6406bbbe3bf69f7edbed675f0
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-