General
-
Target
4464e09f4f8ffb53969e8b3216976cd0098a7cec76bfc6aba5b06bc957389d8d
-
Size
417KB
-
Sample
211017-x8r93sdfel
-
MD5
cf4b5e8dc374bf2a1c89ca371c6feac7
-
SHA1
a15cd8663290e67abae36508a3fff626e69e9069
-
SHA256
4464e09f4f8ffb53969e8b3216976cd0098a7cec76bfc6aba5b06bc957389d8d
-
SHA512
c641584ca6f9e3f741129d70ca2a8decaae8ec0dfc316de9008e252021615fecbc6655e12b224feb8c354dd9d87d4d60b90dc9eccf84706f854a62d5aec554bd
Static task
static1
Malware Config
Extracted
redline
sewPalp
185.215.113.29:24645
Targets
-
-
Target
4464e09f4f8ffb53969e8b3216976cd0098a7cec76bfc6aba5b06bc957389d8d
-
Size
417KB
-
MD5
cf4b5e8dc374bf2a1c89ca371c6feac7
-
SHA1
a15cd8663290e67abae36508a3fff626e69e9069
-
SHA256
4464e09f4f8ffb53969e8b3216976cd0098a7cec76bfc6aba5b06bc957389d8d
-
SHA512
c641584ca6f9e3f741129d70ca2a8decaae8ec0dfc316de9008e252021615fecbc6655e12b224feb8c354dd9d87d4d60b90dc9eccf84706f854a62d5aec554bd
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-